Access 2010 STIG Version 1, Release 11 Checklist Details (Checklist Revisions)
NOTE
This is not the current revision of this Checklist, view the current revision.
SCAP 1.1 Content:
-
Download SCAP 1.1 Content - Microsoft Access 2010 STIG Benchmark - Ver 1, Rel 2 (SCC tool use only)
- Author: Defense Information Systems Agency
Supporting Resources:
-
Download Standalone XCCDF 1.1.4 - Microsoft Access 2010 STIG - Ver 1, Rel 10
- Defense Information Systems Agency
Target:
Target | CPE Name |
---|---|
Microsoft Access 2010 | cpe:/a:microsoft:access:2010 (View CVEs) |
Checklist Highlights
- Checklist Name:
- Access 2010 STIG
- Checklist ID:
- 591
- Version:
- Version 1, Release 11
- Type:
- Compliance
- Review Status:
- Under Review
- Authority:
- Governmental Authority: Defense Information Systems Agency
- Original Publication Date:
- 10/28/2016
Checklist Summary:
This Microsoft Office Technology Overview, along with the associated Security Technical Implementation Guide (STIG), provides the technical security policies, requirements, and implementation details for applying security concepts to Commercial-Off-The-Shelf (COTS) applications. The nearly universal presence of systems on the desktops of all levels of staff provides tremendous opportunities for office automation, communication, data sharing, and collaboration. Unfortunately, this presence also brings about dependence and vulnerabilities. Malicious and mischievous forces have attempted to take advantage of the vulnerabilities and dependencies to disrupt the work processes of the Government. Compounding this problem is the fact that the vendors of software applications have not expended sufficient effort to provide strong security in their applications. Where applications do offer security options, the default settings typically do not provide a strong security posture. There are multiple STIG packages for Microsoft Office 2013, each contains technology-specific guidelines for the respective package. The Microsoft Office System 2013 must also be applied when any Office package is installed. The individual packages are: ? Microsoft Access 2013 ? Microsoft Excel 2013 ? Microsoft Groove 2013 ? Microsoft InfoPath 2013 ? Microsoft Lync 2013 ? Microsoft Office System 2013 ? Microsoft OneNote 2013 ? Microsoft Outlook 2013 ? Microsoft PowerPoint 2013 ? Microsoft Project 2013 ? Microsoft Publisher 2013 ? Microsoft SharePoint Designer 2013 ? Microsoft Visio 2013 ? Microsoft Word 2013 This STIG contains security technical implementation guidance for Microsoft Office Access 2013 only.
Checklist Role:
- Desktop Client
- Office Software
Known Issues:
Not Provided
Target Audience:
Developed for the DOD. This checklist has been created for IT professionals, particularly Windows system administrators and information security personnel. The document assumes that the reader has experience installing and administering applications on Windows-based systems in domain or standalone configurations.
Target Operational Environment:
- Managed
- Specialized Security-Limited Functionality (SSLF)
Testing Information:
Not Provided
Regulatory Compliance:
DOD Directive 8500.01
Comments/Warnings/Miscellaneous:
Not Provided
Disclaimer:
Not Provided
Product Support:
Not Provided
Point of Contact:
disa.stig_spt@mail.mil
Sponsor:
Not Provided
Licensing:
Not Provided
Change History:
Updated status from "Under Review" to "Final" - 21 July 2015 Updated STIG to V1, R9 null Updated URL to reflect change to the DISA website - http --> https updated to v1,r10 - 4/25/18
Dependency/Requirements:
URL | Description |
---|---|
https://iase.disa.mil/stigs/Documents/u_microsoft_office2010_release_memo.pdf | Microsoft Office 2010 Release Memo |
References:
Reference URL | Description |
---|
NIST checklist record last modified on 04/26/2018
* This checklist is still undergoing review for inclusion into the NCP.