| Warning: You are viewing this page with an unsupported Web browser. This Web site works best with Microsoft Internet Explorer 6.0 or later, Firefox 1.5, or Netscape Navigator 8.0 or later. Learn more about supported browsers. Digital signatures: Let Office XP check for revoked certificates
In Microsoft Office XP, digital certificates can be used to create digital signatures for macro projects and files, such as documents, presentations, and workbooks. When you work with a signed macro project or file, a digital signature can provide another level of authenticity to the file or project. A digital certificate is like a driver's license or passport: it adds authenticity to a digital signature by providing information about the signer. In most cases, the certificates are issued by certificate authorities. If this type of certificate becomes compromised, the certificate authority can later revoke the certificate, thus rendering invalid all macros or documents signed after the signature's revocation date. A certificate could become compromised if an unauthorized third-party obtained the private key associated with the certificate. This private key is typically stored on the signer's computer. With the private key, an unauthorized person could essentially forge a signature. If you receive a file that contains macros signed with a revoked certificate, avoid enabling the macros in the file. To do this, verify that your Macro Security setting is set to High.
If you receive a document, presentation, or workbook that has been digitally signed with a revoked certificate, you may not be able to trust its contents. Enabling revocation checkingBy default, Office XP does not check whether a certificate has been revoked. In order for Office XP to check for revoked certificates, you must enable revocation checking in Microsoft Internet Explorer 3.0 or later.
Note When you enable revocation checking, your computer must be able to connect to the Internet to get the revocation list. Connecting to the Internet and downloading the list may slow the process of checking the certificate. Once you enable revocation checking, you'll receive warnings when you try to open files that contain macros with revoked certificates. Looking at revoked certificates
A signed file will contain the signature stamp icon in the status bar, as shown below. To see the details of the certificate, double-click the image in the status bar, select the certificate you want to view, and then click View Certificate. The warning you receive will depend on your Macro Security setting.
High SecurityYou'll receive the following message: This file contains macros with an expired or revoked signature. Since you are running under High Security Level, these macros will be disabled. Medium SecurityYou'll receive a security warning similar to the following. If you click Details, you'll see a message that the certificate has been revoked. If you click View Certificate, you'll see another message on the General tab indicating that certificate has been revoked. |
Email this link
Printer-Friendly Version
Share
Show All
Hide All
