Office 2010: Introducing Application Security Features

This post discuss high-level introduction of several of the new security features in Office 2010. Here’s a quick list: -Staying ahead of hackers: Microsoft designed a new security workflow, a layered defense that Office documents’ve to go through as part of the File Open process. We strive to make this process as invisible as possible. This means no noticeable […]

This post discuss high-level introduction of several of the new security features in Office 2010. Here’s a quick list:

-Staying ahead of hackers: Microsoft designed a new security workflow, a layered defense that Office documents’ve to go through as part of the File Open process. We strive to make this process as invisible as possible. This means no noticeable delay in open times, as well as no dialogs asking you how you feel about security.
-File Block feature is now improved; now’ve a way to configure it in the application and’ve a finer level of granularity to manage how Word, Excel, and PowerPoint open their file types.
-The new binary file-validation system, called “Office File Validation: integral and non-intrusive”.  Since the vast majority of the exploits’ve focused on older file formats, pre-dating our XML versions, we built a system that can validate those files to make sure they conform to the documented format, before they’re opened by Word, Excel, or PowerPoint.[…]
-Protected View is a way to show Word, Excel, and PowerPoint files to you, but without all of the worry about those files being dangerous.[…]