Many documents contain metadata that should be protected, including text marked as "hidden", author name, and changes tracked by Office 2008 revision tracking tools. This metadata is useful because it enables users track document property data. However, in some cases users might not want to expose the metadata when the document is distributed. By exposing the metadata, users become vulnerable to privacy threats. Privacy threats include any threat agent that discloses or reveals personal or private information without the user’s consent or knowledge. Word 2008, Excel 2008, and PowerPoint 2008 allow users to strip out sensitive metadata when the file is saved. With Entourage 2008, you can use Internet-standard S/MIME security extensions; S/MIME allows users to digitally sign and encrypt e-mail messages and attachments to help protect them against tampering or eavesdropping.

For more information about planning and configuring security options that mitigate privacy threats, see the following topics:

If your organization allows users to send and receive documents over the Internet, or if you believe there are potential risks to users' documents from any unauthorized source, you should take the necessary precautions against document threats. When intruders or attackers gain access to proprietary information, it might result in the loss of confidentiality or document data. Users can mitigate document threats if they use the password protection feature to encrypt documents in Excel 2008 and Word 2008.

For more information about configuring document protection settings that mitigate document threats, see Configure document protection settings in Office 2008 in the Office 2008 Security section.

If you connect to the Internet or allow others to use your computer, it is important that you take the necessary steps to protect your system from harm, including attacks from malicious software. Code and application threats pose a potential risk if your organization allows users to:

Excel 2008, Word 2008, and Entourage 2008 allow the use of strong encryption to help protect the contents of documents so that they're unreadable by unauthorized people.

For information about configuring security settings for macros, see Configure security settings for macros in Excel 2008 in the Office 2008 Security section.

External threats can include threat agents such as hyperlinks, embedded objects in e-mails, and data connections that link a document to another document, database, or Web site across an intranet or public network.

External threats are a risk if your organization:

For information about planning and configuring security settings that mitigate threats from external agents, see Configure external program access to Entourage 2008 in the Office 2008 Planning section.