How to plan, deploy, and monitor the security baselines of computers running Microsoft Office 2010

You can use the Microsoft Security Compliance Manager tool, which includes the Office 2010 Security Baseline, to help plan, deploy, and monitor the security baselines of computers running Microsoft Office 2010. What is the Security Compliance Manager tool? The Microsoft Security Compliance Manager provides security configuration recommendations from Microsoft, centralized security baseline management features, a baseline portfolio, customization…

1

Microsoft Security Intelligence Report Volume 10 (SIR v10)

The Microsoft Security Intelligence Report – volume 10 (SIR v10) was recently released. What is the Security Intelligence Report? The Security Intelligence Report (SIR) is an investigation of the current threat landscape of operating systems, web browsers, and applications.  It analyzes exploits, vulnerabilities, and malware based on data from over 600 million systems worldwide, as…


Where is the Microsoft Office 2010 Security Guide?

The previously stand-alone Microsoft product-specific security guides, including the Microsoft Office 2010 Security Guide, are now included within the Microsoft Security Compliance Manager (SCM) tool. The security guidance from Microsoft Solution Accelerators hasn’t disappeared, it’s just been repackaged. First download and install the SCM tool. Next, import the Microsoft Office 2010 Security Baseline. Finally, select…


Fuzz Testing in Office

We’ve made a few changes in how we develop and test our productivity software that resulted in Office 2010 becoming the most secure version of Microsoft Office yet. In addition to designing Office with potential threats in mind, reviewing programming code for security flaws, and performing penetration testing, Fuzz Testing is another processes used at…


Office File Validation for Office 2003 and Office 2007

Office File Validation, a Microsoft Office 2010 security feature, is now available for both Office 2003 and Office 2007. We strongly recommend that Office File Validation be applied to all computers that use Office 2003 and Office 2007. However, Office File Validation, in combination with Protected View, offers an even better security experience. Protected View…

3

Office 2010 Security Whitepaper: Keeping Enterprise Data Safe

The Microsoft Office 2010 security whitepaper, “Keeping Enterprise Data Safe with Office 2010” is currently available for download from the Microsoft Download Center.  This whitepaper highlights the new security features and enhancements introduced in Microsoft Office 2010 that help protect organizations from exploits targeting users who use Office applications in their daily work. The paper begins…


RSA Conference 2011 – Cloud Computing

I’ve enjoyed my time so far here at RSAConference2011 in San Francisco. Today started out great with the presentation of the RSA Lifetime Achievement Award to Ron Rivest, Adi Shamir, and Leonard Adleman, RSA themselves. There was even a standing ovation after the award was presented. After this the keynote addresses were given throughout the morning, followed by…


RSA Conference 2011 – Microsoft Office Security

Hi, I will be attending RSA Conference 2011 this month. I’m a Senior Technical Writer for the Office Resource Kit and focus on writing security articles. If possible, I would like to meet any of you who are also attending and are interested in talking about any of the following: Microsoft Office security Improvements to security in Microsoft…


Microsoft Office 2010 Security Baseline released and now available for download

The Security Solution Accelerators team recently announced the release of the new Office 2010 Security Baseline that can be used with the Security Compliance Manager tool! New users can access the Office 2010 Security Baseline by visiting the Microsoft Download Center to download the Security Compliance Manager tool. Existing users can access the Office 2010 Security Baseline in the tool…


Office 2010 Security – New Resource Center

We recently created a new Office 2010 Security resource center. Please take it for a test drive and let us know what you think. Is there anything that you would like to see added? Do you find this resource useful? We would love to hear back from you. Thank-you!