Password protecting Office 2010 documents

Hello,

Could someone give me some advice please...?

When you password protect an Office 2010 document I am given to understand that this encrypts the file.

How good is this protection?  How easily can it be cracked?  

If I was to send this password protected file via email or store in a public folder somewhere and it was intercepted by a hacker what are the chances that they could open it?

Many thanks

Mark
Tea_MonkeyAsked:
Who is Participating?
 
Dave HoweConnect With a Mentor Software and Hardware EngineerCommented:
The encryption in office is actually very good -there is *no known* way to break the password short of brute force. Professional software uses the "rainbow table" approach to attempt to compare a value looked up from a precalculated brute force attack to the encrypted file - if the original brute force attack contained the password, then it will return it (if the password wasn't in the original dictionary though, it comes back empty).

Provided you stick to non-dictionary passwords no shorter than 10 characters, with a mix of upper, lower, numbers, and symbols, you will be as secure as by any other method.
0
 
Shanan212Connect With a Mentor Commented:
Yes it does encrypts file. Read more about it here.

http://office.microsoft.com/en-001/help/password-protect-documents-workbooks-and-presentations-HA010148333.aspx

The file can be cracked by professional softwares. But a regular Joe wouldn't be able to do so. It depends on the importance of the file. As long as someone knows it has very sensitive information, they may attempt or ask other experts for advices of what software to use.

But a regular person won't be able to do it.
0
 
mmichaConnect With a Mentor Commented:
I would not count on that encryption/protection.  There are products sold that can assist in recovering those files.

Just a quick search even shows youtube videos available to assist.  It's never been known as a very secure protection.

I'd look for a deeper solution if it is that important of data.  Maybe using PGP or another layer of encryption.
0
Worried about phishing attacks?

90% of attacks start with a phish. It’s critical that IT admins and MSSPs have the right security in place to protect their end users from these phishing attacks. Check out our latest feature brief for tips and tricks to keep your employees off a hackers line!

 
KashConnect With a Mentor 2nd Line EngineerCommented:
office 2010 has better protection than 2007. 2007 can easily be cracked within minutes using software sold on the internet.

if you do have important data then a layer on top of the protection would help. i.e: PGP or i would ZIP it with password and encryption if you are really bothered
0
 
Dave HoweConnect With a Mentor Software and Hardware EngineerCommented:
Answer to that is "it depends".

Office 2007 supported AES, provided you saved as a new-style -x file. older formatted files (so doc, xls etc) were encrypted with the RC4 protocol, which had noticeable weaknesses.

As you go back in time, you find RC4 (128 bit), RC4 (40 bit) and the Microsoft proprietary method which barely qualifies as better than ROT13, but given the queriant specified office 2010, I doubt that is an issue. :)
0
 
Tea_MonkeyAuthor Commented:
Thanks for all the feedback, helpful and much appreciated
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.