Microsoft Internet Explorer 11 Security Technical Implementation Guide
Rules, Groups, and Values defined within the XCCDF Benchmark
-
.NET Framework-reliant components not signed with Authenticode must be disallowed to run (Restricted Sites Zone).
This policy setting allows you to manage whether .NET Framework-reliant components that are not signed with Authenticode can be executed from Internet Explorer. These components include managed con...Rule Medium Severity -
SRG-APP-000516
Group -
.NET Framework-reliant components signed with Authenticode must be disallowed to run (Restricted Sites Zone).
This policy setting allows you to manage whether .NET Framework-reliant components that are signed with Authenticode can be executed from Internet Explorer. It may be possible for malicious content...Rule Medium Severity -
SRG-APP-000141
Group -
SRG-APP-000141
Group -
SRG-APP-000141
Group -
Crash Detection management must be enforced.
The 'Turn off Crash Detection' policy setting allows you to manage the crash detection feature of add-on management in Internet Explorer. A crash report could contain sensitive information from the...Rule Medium Severity -
SRG-APP-000141
Group -
SRG-APP-000206
Group -
Managing SmartScreen Filter use must be enforced.
This setting is important from a security perspective because Microsoft has extensive data illustrating the positive impact the SmartScreen filter has had on reducing the risk of malware infection ...Rule Medium Severity -
SRG-APP-000089
Group -
Browser must retain history on exit.
Delete Browsing History on exit automatically deletes specified items when the last browser window closes. Disabling this function will prevent users from deleting their browsing history, which co...Rule Medium Severity -
SRG-APP-000089
Group -
SRG-APP-000080
Group -
InPrivate Browsing must be disallowed.
InPrivate Browsing lets the user control whether or not Internet Explorer saves the browsing history, cookies, and other data. User control of settings is not the preferred control method. The InPr...Rule Medium Severity -
SRG-APP-000141
Group -
SRG-APP-000141
Group -
When uploading files to a server, the local directory path must be excluded (Internet zone).
This policy setting controls whether or not the local path information will be sent when uploading a file via a HTML form. If the local path information is sent, some information may be unintention...Rule Medium Severity -
SRG-APP-000141
Group -
SRG-APP-000516
Group
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.