Title

Trust Bar notifications for Security messages must be enforced. (Cat II impact)

Discussion

The Message Bar in Office applications is used to identify security issues, such as unsigned macros or potentially unsafe add-ins. When such issues are detected, the application disables the unsafe feature or content and displays the Message Bar at the top of the active window. The Message Bar informs the users about the nature of the security issue and, in some cases, provides the users with an option to enable the potentially unsafe feature or content, which could harm the user's computer. By default, if an Office application detects a security issue, the Message Bar is displayed. However, this configuration can be modified by users in the Trust Center.

Check Content

The policy value for User Configuration -> Administrative Templates -> Microsoft Office 2010 -> Security Settings “Disable all Trust Bar notifications for security issues” must be set to “Disabled”. Procedure: Use the Windows Registry Editor to navigate to the following key: HKCU\Software\Policies\Microsoft\Office\14.0\common\trustcenter Criteria: If the value TrustBar is REG_DWORD = 0, this is not a finding.

Fix Text

Set the policy value for User Configuration -> Administrative Templates -> Microsoft Office 2010 -> Security Settings “Disable all Trust Bar notifications for security issues” to “Disabled”.

Additional Identifiers

Rule ID: SV-33455r1_rule

Vulnerability ID: V-17590

Group Title: DTOO186 - Trust Bar Notifications

Expert Comments

CCIs tied to check.

Controls tied to check. These are derived from the CCIs shown above.