Microsoft Office System 2013 Security Technical Implementation Guide
Rules, Groups, and Values defined within the XCCDF Benchmark
-
Automatic receiving of small updates to improve reliability must be disallowed.
Having access to updates, add-ins, and patches on the Office Online website can help users ensure computers are up to date and equipped with the latest security patches. However, to ensure updates ...Rule Medium Severity -
SRG-APP-000141
Group -
The Internet Fax Feature must be disabled.
Excel, PowerPoint, and Word users can use the Internet Fax feature to send documents to fax recipients through an Internet fax service provider. If your organization has policies that govern the ti...Rule Medium Severity -
SRG-APP-000141
Group -
Online content options must be configured for offline content availability.
The Office 2013 Help system automatically searches MicrosoftOffice.com for content when a computer is connected to the Internet. Users can change this default by clearing the Search Microsoft Offic...Rule Medium Severity -
SRG-APP-000141
Group -
The video informing a user about signing into Office365 must be disabled.
Office 365 is a subscription-based service which offers access to various Microsoft Office applications. Access to Office 365 will not be permitted; only locally installed and configured Office 20...Rule Medium Severity -
SRG-APP-000141
Group -
SRG-APP-000141
Group -
The ability to sign into Office365 must be disabled.
Office 2013 can be configured to prompt users for credentials to Office365 using either their Microsoft Account or the user ID assigned by an organization for accessing Office 365. Access to Offic...Rule Medium Severity -
SRG-APP-000141
Group -
The ability to automatically hyperlink screenshots within Word, PowerPoint, Excel and Outlook must be disabled.
The ability to automatically bind hyperlink to a screenshot inserted through the Insert Screenshot tool introduces the possibility of a malicious URL or website being imbedded in the Word, PowerPoi...Rule Medium Severity -
SRG-APP-000141
Group -
The prompt to save to OneDrive (formerly SkyDrive) must be disabled.
OneDrive (formerly SkyDrive) is a cloud based storage feature that introduces the capability for users to save documents to locations outside of protected enclaves. This feature introduces the risk...Rule Medium Severity -
SRG-APP-000141
Group -
Office Presentation Service must be removed as an option for presenting PowerPoint and Word online.
The Office Presentation Service is a free, public service that allows others to follow along in a web browser. Allowing this feature could result in presentations with DoD FOUO, PII and other prot...Rule Medium Severity -
SRG-APP-000141
Group -
The Office Feedback tool must be disabled.
The "Office Feedback" tool, also called "Send-a-Smile", allows a user to click on an icon and send feedback to Microsoft. Applications used by DoD users should not be able to provide feedback to co...Rule Medium Severity -
SRG-APP-000141
Group -
SRG-APP-000141
Group
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.