Skip to content
ATO Pathways
Log In
Overview
Search
Catalogs
SCAP
OSCAL
Catalogs
Profiles
Documents
References
Knowledge Base
Platform Documentation
Compliance Dictionary
Platform Changelog
About
Catalogs
XCCDF
Microsoft Access 2013 STIG
DTOO131 - Trust Bar Notifications
DTOO131 - Trust Bar Notifications
An XCCDF Group - A logical subset of the XCCDF Benchmark
Details
Profiles
Prose
DTOO131 - Trust Bar Notifications
1 Rule
<GroupDescription></GroupDescription>
Trust Bar Notifications for unsigned application add-ins must be blocked.
Medium Severity
<VulnDiscussion>If an application is configured to require all add-ins be signed by a trusted publisher, any unsigned add-ins the application loads will be disabled and the application will display the Trust Bar at the top of the active window. The Trust Bar contains a message informing users about the unsigned add-in. If the Trust Bar were to be allowed while add-ins are required to be signed by a trusted publisher, the user would have the ability to make the determination to allow an unsigned add-in, which increases the risk of allowing malicious code to run on the user's computer and on the network.</VulnDiscussion><FalsePositives></FalsePositives><FalseNegatives></FalseNegatives><Documentable>false</Documentable><Mitigations></Mitigations><SeverityOverrideGuidance></SeverityOverrideGuidance><PotentialImpacts></PotentialImpacts><ThirdPartyTools></ThirdPartyTools><MitigationControl></MitigationControl><Responsibility>System Administrator</Responsibility><Responsibility>Information Assurance Officer</Responsibility><IAControls>ECSC-1</IAControls>