7 Index

Office

\

\_signatures stream

\0x06DataSpaces\DataSpaceInfo storage – encryption

\0x06DataSpaces\DataSpaceInfo storage – IRMDS

\0x06DataSpaces\DataSpaceMap stream – encryption

\0x06DataSpaces\DataSpaceMap stream – IRMDS

\0x06DataSpaces\TransformInfo storage – encryption

\0x06DataSpaces\TransformInfo storage for ECMA-376 documents – IRMDS

\0x06DataSpaces\TransformInfo storage for Office binary documents – IRMDS

\EncryptedPackage stream – encryption

\EncryptionInfo stream (agile encryption) – encryption

\EncryptionInfo stream (extensible encryption) – encryption

\EncryptionInfo stream (standard encryption) – encryption

\EncryptionInfo Stream (Third-Party Extensible Encryption) example

\EncryptionInfo Stream example

_

_xmlsignatures storage

0

0x06Primary Stream example

4

40-bit RC4 encryption overview

A

Applicability overview

   data spaces

   encryption

Array overview

B

Binary document digital signatures

   \_signatures stream

   _xmlsignatures storage

   CryptoAPI digital signature CertificateInfo structure

   CryptoAPI digital signature generation

   CryptoAPI digital signature structure

   idOfficeObject object element

   idPackageObject object element

   KeyInfo element

   security

      implementer considerations

   SignatureValue element

   SignedInfo element

   TimeEncoding structure

   XAdES elements

   Xmldsig digital signature elements

Binary document digital signatures structure

Binary document password verifier derivation Method 1 – encryption

Binary document password verifier derivation Method 2 – encryption

Binary document write protection Method 1

Binary document write protection Method 2

Binary document write protection Method 3

Binary document XOR array initialization Method 1 – encryption

Binary document XOR array initialization Method 2 – encryption

Binary document XOR data transformation Method 1 – encryption

Binary document XOR data transformation Method 2 – encryption

Byte ordering

   overview

C

Certificate chain example

Change tracking

CryptoAPI digital signature CertificateInfo structure

CryptoAPI digital signature generation

CryptoAPI digital signature structure

CryptoAPI RC4 encryption overview

D

Data encryption (agile encryption) – encryption

Data spaces

   applicability

   DataSpaceDefinition structure

   DataSpaceMap structure

   DataSpaceMapEntry structure

   DataSpaceReferenceComponent structure

   DataSpaceVersionInfo structure

   EncryptionTransformInfo structure

   File

   Length-Prefixed Padded Unicode String (UNICODE-LP-P4) structure

   Length-Prefixed UTF-8 String (UTF-8-LP-P4) structure

   overview

   security

      implementer considerations

   TransformInfoHeader structure

   version structure

Data spaces structure

DataIntegrity generation (agile encryption) – encryption

DataSpaceDefinition structure – data spaces

DataSpaceMap Stream example

DataSpaceMap structure – data spaces

DataSpaceMapEntry structure – data spaces

DataSpaceMapEntry structure example

DataSpaceReferenceComponent structure – data spaces

DataSpaceVersionInfo structure – data spaces

Details

   \_signatures stream

   \0x06DataSpaces\DataSpaceInfo storage (section 2.2.2, section 2.3.4.2)

   \0x06DataSpaces\DataSpaceMap stream (section 2.2.1, section 2.3.4.1)

   \0x06DataSpaces\TransformInfo storage

   \0x06DataSpaces\TransformInfo storage for ECMA-376 documents

   \0x06DataSpaces\TransformInfo storage for Office binary documents

   \EncryptedPackage stream

   \EncryptionInfo stream (agile encryption)

   \EncryptionInfo stream (extensible encryption)

   \EncryptionInfo stream (standard encryption)

   _xmlsignatures storage

   binary document digital signatures structure

   binary document password verifier derivation Method 1

   binary document password verifier derivation Method 2

   binary document write protection Method 1

   binary document write protection Method 2

   binary document write protection Method 3

   binary document XOR array initialization Method 1

   binary document XOR array initialization Method 2

   binary document XOR data transformation Method 1

   binary document XOR data transformation Method 2

   CertificateInfo structure - CryptoAPI digital signature

   CryptoAPI digital signature CertificateInfo structure

   CryptoAPI digital signature generation

   CryptoAPI digital signature structure

   data encryption (agile encryption)

   data spaces structure

   DataIntegrity generation (agile encryption)

   DataSpaceDefinition structure

   DataSpaceMap structure

   DataSpaceMapEntry structure

   DataSpaceReferenceComponent structure

   DataSpaceVersionInfo structure

   document write protection structure

   ECMA-376 document encryption

   ECMA-376 document encryption key generation (standard encryption)

   ECMA-376 document write protection

   encryption key derivation

   encryption key generation (agile encryption)

   encryption structure

   EncryptionHeader structure

   EncryptionHeaderFlags structure

   EncryptionTransformInfo structure

   EncryptionVerifier structure

   end-user license stream

   EndUserLicenseHeader structure

   ExtensibilityHeader structure

   File structure

   idOfficeObject object element

   idPackageObject object element

   Information Rights Management Data Space structure

   initialization vector generation (agile encryption)

   IRMDSTransformInfo structure

   ISO write protection method

   KeyInfo element

   Length-Prefixed Padded Unicode String (UNICODE-LP-P4) structure

   Length-Prefixed UTF-8 String (UTF-8-LP-P4) structure

   LicenseID

   Office binary document RC4 CryptoAPI encryption

   Office binary document RC4 encryption

   password verification - Office binary document RC4 CryptoAPI encryption

   password verification - Office binary document RC4 encryption

   password verification - XOR obfuscation

   password verification (standard encryption)

   password verifier generation - Office binary document RC4 CryptoAPI encryption

   password verifier generation - Office binary document RC4 encryption

   password verifier generation (standard encryption)

   PasswordKeyEncryptor generation (agile encryption)

   protected content stream

   RC4 CryptoAPI encrypted summary stream

   RC4 CryptoAPI EncryptedStreamDescriptor structure

   RC4 CryptoAPI encryption header

   RC4 CryptoAPI encryption key generation

   RC4 encryption header

   SignatureValue element

   SignedInfo element

   TimeEncoding structure

   TransformInfoHeader structure

   version structure

   viewer content stream

   XAdES elements

   Xmldsig digital signature elements

   XOR obfuscation

Digital signature elements - Xmldsig

Digital signatures

   overview

Document write protection

   binary document write protection Method 1

   binary document write protection Method 2

   binary document write protection Method 3

   ECMA-376

   ISO write protection method

   security

      implementer considerations

Document write protection structure

DRMEncryptedDataSpace Stream example

E

ECMA-376 document encryption

   security

      implementer considerations

ECMA-376 document encryption – encryption

ECMA-376 document encryption key generation (standard encryption) – encryption

ECMA-376 document encryption overview

ECMA-376 document write protection

Elements

   idOfficeObject object

   idPackageObject object

   KeyInfo

   SignatureValue

   SignedInfo

   XAdES

   Xmldsig digital signature

Encryption

   \0x06DataSpaces\DataSpaceInfo storage

   \0x06DataSpaces\DataSpaceMap stream

   \0x06DataSpaces\TransformInfo storage

   \EncryptedPackage stream

   \EncryptionInfo stream (agile encryption)

   \EncryptionInfo stream (extensible encryption)

   \EncryptionInfo stream (standard encryption)

   40-bit RC4 encryption overview

   applicability

   binary document password verifier derivation Method 1

   binary document password verifier derivation Method 2

   binary document XOR array initialization Method 1

   binary document XOR array initialization Method 2

   binary document XOR data transformation Method 1

   binary document XOR data transformation Method 2

   CryptoAPI RC4 encryption overview

   data encryption (agile encryption)

   DataIntegrity generation (agile encryption)

   ECMA-376 document

   ECMA-376 document encryption key generation (standard encryption)

   ECMA-376 document encryption overview

   encryption key derivation

   encryption key generation (agile encryption)

   EncryptionHeader structure

   EncryptionHeaderFlags structure

   EncryptionVerifier structure

   initialization vector generation (agile encryption)

   Office binary document RC4

   Office binary document RC4 CryptoAPI

   overview

   password verification - Office binary document RC4

   password verification - Office binary document RC4 CryptoAPI

   password verification – XOR obfuscation

   password verification (standard encryption)

   password verifier generation - Office binary document RC4

   password verifier generation - Office binary document RC4 CryptoAPI

   password verifier generation (standard encryption)

   PasswordKeyEncryptor generation (agile encryption)

   RC4 CryptoAPI encrypted summary stream

   RC4 CryptoAPI EncryptedStreamDescriptor structure

   RC4 CryptoAPI encryption header

   RC4 CryptoAPI encryption key generation

   RC4 encryption header

   XOR obfuscation

   XOR obfuscation overview

Encryption header example

Encryption key derivation – encryption

Encryption key generation (agile encryption) – encryption

Encryption structure

EncryptionHeader structure – encryption

EncryptionHeader Structure example

EncryptionHeaderFlags structure – encryption

EncryptionTransformInfo structure – data spaces

EncryptionVerifier structure – encryption

EncryptionVerifier Structure example

End-user license stream – IRMDS

EndUserLicenseHeader structure – IRMDS

EndUserLicenseHeader structure example

EUL-ETRHA1143ZLUDD412YTI3M5CTZ Stream example

Examples

   \EncryptionInfo Stream

   \EncryptionInfo Stream (Third-Party Extensible Encryption)

   0x06Primary Stream

   certificate chain

   DataSpaceMap Stream

   DataSpaceMapEntry structure

   DRMEncryptedDataSpace Stream

   encryption header

   EncryptionHeader Structure

   EncryptionVerifier Structure

   EndUserLicenseHeader structure

   EUL-ETRHA1143ZLUDD412YTI3M5CTZ Stream

   PasswordKeyEncryptor (Agile Encryption)

   Version Stream

Examples overview

ExtensibilityHeader structure – IRMDS

F

Fields - security index

Fields - vendor-extensible

File – data spaces

G

Glossary

I

idOfficeObject object element

idPackageObject object element

Implementer - security considerations

   binary document digital signatures

   data spaces

   document write protection

   ECMA-376 document encryption

   Information Rights Management

   Office binary document RC4 CryptoAPI encryption

   Office binary document RC4 encryption

   XOR obfuscation

Index of security fields

Information Rights Management

   security

      implementer considerations

Information Rights Management Data Space

   applicability

   overview

Information Rights Management Data Space structure

Informative references

Initialization vector generation (agile encryption) – encryption

Introduction

IRMDS

   \0x06DataSpaces\DataSpaceInfo storage

   \0x06DataSpaces\DataSpaceMap stream

   \0x06DataSpaces\TransformInfo storage for ECMA-376 documents

   \0x06DataSpaces\TransformInfo storage for Office binary documents

   end-user license stream

   EndUserLicenseHeader structure

   ExtensibilityHeader structure

   IRMDSTransformInfo structure

   LicenseID

   protected content stream

   viewer content stream

IRMDSTransformInfo structure – IRMDS

ISO write protection method

K

KeyInfo element

L

Length-Prefixed Padded Unicode String (UNICODE-LP-P4) structure – data spaces

Length-Prefixed UTF-8 String (UTF-8-LP-P4) structure – data spaces

LicenseID – IRMDS

Localization

N

Normative references

O

Office binary document RC4 CryptoAPI encryption

   security

      implementer considerations

Office binary document RC4 CryptoAPI encryption – encryption

Office binary document RC4 encryption

   security

      implementer considerations

Office binary document RC4 encryption – encryption

OLE compound file path encoding

   overview

Overview

   40-bit RC4 encryption

   array

   byte ordering

   CryptoAPI RC4 encryption

   data spaces - applicability

   data spaces – overview (synopsis)

   digital signatures

   ECMA-376 document encryption

   encryption

   encryption - applicability

   Information Rights Management Data Space

   OLE compound file path encoding

   pseudocode standard objects

   storage

   stream

   string

   string encoding

   write protection

   XOR obfuscation

P

Password verification – Office binary document RC4 CryptoAPI encryption

Password verification – Office binary document RC4 encryption

Password verification – XOR obfuscation

Password verification (standard encryption) – encryption

Password verifier generation – Office binary document RC4 CryptoAPI encryption

Password verifier generation – Office binary document RC4 encryption

Password verifier generation (standard encryption) – encryption

PasswordKeyEncryptor (Agile Encryption) example

PasswordKeyEncryptor generation (agile encryption) – encryption

Product behavior

Protected content stream – IRMDS

Pseudocode standard objects

   array overview

   overview

   storage overview

   stream overview

   string overview

R

RC4 CryptoAPI encrypted summary stream – encryption

RC4 CryptoAPI EncryptedStreamDescriptor structure – encryption

RC4 CryptoAPI encryption header – encryption

RC4 CryptoAPI encryption key generation – encryption

RC4 encryption header – encryption

References

   informative

   normative

Relationship to protocols and other structures

S

Security

   field index

   implementer considerations

      binary document digital signatures

      data spaces

      document write protection

      ECMA-376 document encryption

      Information Rights Management

      Office binary document RC4 CryptoAPI encryption

      Office binary document RC4 encryption

      XOR obfuscation

SignatureValue element

SignedInfo element

Storage - _xmlsignatures

Storage overview

Stream overview

String encoding

   overview

String overview

Structure overview

   40-bit RC4 encryption

   array

   byte ordering

   CryptoAPI RC4 encryption

   data spaces

   digital signatures

   ECMA-376 document encryption

   encryption

   Information Rights Management Data Space

   OLE compound file path encoding

   pseudocode standard objects

   storage

   stream

   string

   string encoding

   write protection

   XOR obfuscation

Structures

   binary document digital signatures

   data spaces

   document write protection

   encryption

   Information Rights Management Data Space

T

TimeEncoding structure

Tracking changes

TransformInfoHeader structure – data spaces

U

UNICODE-LP-P4 structure – data spaces

UTF-8-LP-P4 structure – data spaces

V

Vendor-extensible fields

Version Stream example

Version structure – data spaces

Versioning

Viewer content stream – IRMDS

W

Write protection

   overview

X

XAdES elements

Xmldsig digital signature elements

XOR obfuscation

   security

      implementer considerations

XOR obfuscation – encryption

XOR obfuscation overview

Show: