DTOO321 - Office System - Encrypt document properties must be configured for OLE documents.

Information

This policy setting allows you configure if the document properties are encrypted. This applies to OLE documents (Office 97-2003 compatible) if the application is configured for CAPI RC4. Disabling this setting will prevent the encryption of document properties, which may expose sensitive data.

Solution

Set the policy value for User Configuration -> Administrative Templates -> Microsoft Office 2010 -> Security Settings 'Encrypt document properties' to 'Enabled'.

See Also

https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_MS_OfficeSystem_2010_V1R13_STIG.zip

Item Details

Category: SYSTEM AND COMMUNICATIONS PROTECTION

References: 800-53|SC-28(1), CAT|II, CCI|CCI-002476, Rule-ID|SV-34089r1_rule, STIG-ID|DTOO321, Vuln-ID|V-26704

Plugin: Windows

Control ID: 7a6cc018fbfe9bf77cec1fc0799bccd15a66193fd3ca84a9ce996b0844554011