STIGQter STIGQter: STIG Summary:

Microsoft Office System 2016 Security Technical Implementation Guide

Version: 1

Release: 1 Benchmark Date: 14 Nov 2016

SV-85479r1_ruleThe Help Improve Proofing Tools feature for Office must be configured.
SV-85483r1_ruleTrust Bar notifications for Security messages must be enforced.
SV-85485r1_ruleRights managed Office Open XML files must be protected.
SV-85487r1_ruleDocument metadata for password protected files must be protected.
SV-85489r1_ruleThe encryption type for password protected Open XML files must be set.
SV-85491r1_ruleThe encryption type for password protected Office 97 thru Office 2003 must be set.
SV-85493r1_ruleActiveX control initialization must be disabled.
SV-85495r1_ruleLoad controls in forms3 must be disabled from loading.
SV-85497r1_ruleAutomation Security to enforce macro level security in Office documents must be configured.
SV-85499r1_ruleA mix of policy and user locations for Office Products must be disallowed.
SV-85501r1_ruleSmart Documents use of Manifests in Office must be disallowed.
SV-85505r1_ruleConnection verification of permissions must be enforced.
SV-85507r1_ruleInclusion of document properties for PDF and XPS output must be disallowed.
SV-85509r1_ruleEncrypt document properties must be configured for OLE documents.
SV-85513r1_ruleOffice Presentation Service must be removed as an option for presenting PowerPoint and Word online.
SV-85515r1_ruleThe ability to create an online presentation programmatically must be disabled.
SV-85517r1_ruleWhen using the Office Feedback tool, the ability to include a screenshot must be disabled.
SV-85519r1_ruleThe ability to run unsecure Office web add-ins and Catalogs must be disabled.
SV-85521r1_ruleThe Office Telemetry Agent must be configured to obfuscate the file name, file path, and title of Office documents before uploading telemetry data to the shared folder.
SV-85523r1_ruleThe ability to send personal information to Office must be disabled.