Microsoft Office System 2013 Security Technical Implementation Guide
Rules, Groups, and Values defined within the XCCDF Benchmark
-
Document metadata for password protected files must be protected.
When an Office Open XML document is protected with a password and saved, any metadata associated with the document is encrypted along with the rest of the document's contents. If this configuration...Rule Medium Severity -
SRG-APP-000231
Group -
SRG-APP-000231
Group -
The encryption type for password protected Office 97 thru Office 2003 must be set.
If unencrypted files are intercepted, sensitive information in the files can be compromised. To protect information confidentiality, Microsoft Office application files can be encrypted and password...Rule Medium Severity -
SRG-APP-000231
Group -
SRG-APP-000209
Group -
SRG-APP-000209
Group -
Load controls in forms3 must be disabled from loading.
ActiveX controls are Component Object Model (COM) objects and have unrestricted access to users' computers. ActiveX controls can access the local file system and change the registry settings of the...Rule Medium Severity -
SRG-APP-000131
Group -
SRG-APP-000328
Group
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.
Capacity
Modules