An error occurred:

Check: DTOO297 - InfoPath

Microsoft InfoPath 2010 STIG: DTOO297 - InfoPath (in versions v1 r11 through v1 r10)

Title

A form that is digitally signed must be displayed with a warning. (Cat II impact)

Discussion

This setting controls whether the user sees a dialog box when opening Microsoft InfoPath forms containing digitally signed content. By default, InfoPath shows the user a warning message when the form contains a digital signature.

Check Content

The policy value for User Configuration -> Administrative Templates -> Microsoft InfoPath 2010 -> Security “Display a warning that a form is digitally signed” must be set to “Enabled”. Procedure: Use the Windows Registry Editor to navigate to the following key: HKCU\Software\Policies\Microsoft\Office\14.0\infopath\security Criteria: If the value SignatureWarning is REG_DWORD = 1, this is not a finding.

Fix Text

Set the policy value for User Configuration -> Administrative Templates -> Microsoft InfoPath 2010 -> Security “Display a warning that a form is digitally signed” to “Enabled”.

Additional Identifiers

Rule ID: SV-34221r1_rule

Vulnerability ID: V-26621

Group Title: DTOO297 - A form is digitally signed

Expert Comments

Expert comments are only available to logged-in users.

CCIs

CCIs tied to check.
Number Definition
CCI-001749

The information system prevents the installation of organization-defined software components without verification the software component has been digitally signed using a certificate that is recognized and approved by the organization.

Controls

Controls tied to check. These are derived from the CCIs shown above.
Number Title
CM-5 (3)

Signed Components