2007 Microsoft Office Security Guide
Welcome to the 2007 Microsoft Office Security Guide.
Although e-mail systems and desktop applications are essential collaboration and productivity tools, attachments, macros, and add-ins can contain viruses or other malware. This Solution Accelerator is designed to help you keep users productive while protecting your systems and keeping your data secure.
The 2007 Microsoft® Office release is designed to help defeat attacks that target e-mail and desktop documents. Hundreds of security and privacy settings are available that allow you to ensure your deployment of the 2007 Office release balances your organization’s needs for security and functionality.
The 2007 Microsoft Office Security Guide provides IT professionals with best practices and automated tools to help strengthen the security of computers that run either Windows Vista™ or Windows® XP SP2 and the following applications:
| • | Microsoft Office Access™ 2007 |
| • | Microsoft Office Excel® 2007 |
| • | Microsoft Office InfoPath® 2007 |
| • | Microsoft Office Outlook® 2007 |
| • | Microsoft Office PowerPoint®2007 |
| • | Microsoft Office Word 2007 |
On This Page
 | 2007 Microsoft Office Security Guide Components |
2007 Microsoft Office Security Guide Components
The 2007 Microsoft Office Security Guide consists of the following components:
| • | Executive Overview. This document summarizes for business and technical managers how the guidance and tools in this Solution Accelerator can benefit your organization. |
| • | Security Guide. This guide describes the security model for the 2007 Microsoft Office release as well as new security features and functionality. It includes recommended guidelines and best practices for implementing security settings for two different environments—an Enterprise Client (EC) environment, which seeks to balance functionality and security and is appropriate for most organizations, and the Specialized Security – Limited Functionality (SSLF) environment, which is only appropriate for organizations that require very strong security at the expense of application functionality. SSLF settings restrict some application features. |
| • | Threats and Countermeasures. This guide is a comprehensive technical reference that explains the security and privacy settings for the six referenced applications, their recommended configurations, and which threats they address. It also contains Common Configuration Enumeration (CCE) IDs for all the settings. CCE provides identifiers to system configurations to facilitate fast and accurate correlation of configuration data across multiple information sources and tools. |
| • | Security Settings spreadsheet. This Office Excel spreadsheet lists security settings for the six referenced applications and their recommended configurations for the EC and SSLF environments, as well as Common Configuration Enumeration (CCE) IDs for all the settings. |
| • | GPOAccelerator. This tool helps you automatically deploy security configurations for the 2007 Microsoft Office release across your organization. It can also be used to deploy security settings for Windows® XP and Windows Vista®. |
