![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(22.400000000000002, 12%, 12%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAP%3C/text%3E%3C/svg%3E)
Microsoft 365 and Office | Word | For education | Other
A family of Microsoft word processing software products for creating web, email, and print documents.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(57.599999999999994, 23%, 15%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAN%3C/text%3E%3C/svg%3E)
Hi @Amit Purswani,
Thank you for posting your question to Microsoft Q&A Forum.
Password protection in Microsoft Word uses strong encryption to secure documents and their contents.
There is two types of passwords:
- Encryption to open/view: Requires a password to decrypt and display document content.
- Modification restriction: Uses a password to prevent editing, but this does not encrypt content and is relatively weak.
The specific encryption depends on the version of Microsoft Office used:
| Office Version | Encryption Type | Key Size | Key Derivation & Hash | Mode & Salt |
|---|---|---|---|---|
| Office 2007 | AES | 128-bit | SHA‑1, stretched 50,000 iterations | Not specified |
| Office 2010 | AES | 128-bit | SHA‑1, stretched 100,000 iterations | — |
| Office 2013 | AES | 128-bit | SHA‑1 (default), SHA‑512 option | — |
| Office 2016 and later | AES | 256-bit | SHA‑2 (e.g. SHA‑512) | CBC mode, 16-byte salt |
All these versions use Microsoft's Office Document Cryptography Specification ([MS‑OFFCRYPTO]) to manage keys, salts, and encryption settings.
Password protection encrypts your document so only those with the correct password can access it. The process includes:
- Password Entry
Set a password via File > Info > Protect Document > Encrypt with Password. - Key Derivation
Word converts the password into a strong key using SHA‑1 or SHA‑2 hashing, salt, and thousands of iterations. - Encryption
The key encrypts the document with AES (128- or 256-bit), typically in CBC mode. - Storage
Metadata (salt, iterations, algorithm info) is stored in the file, but the key itself is never saved. - Decryption
Opening the file requires the correct password to regenerate the key and decrypt the content. - Safety
Lost passwords cannot be recovered unless an IT tool like DocRecrypt was set up beforehand.
In conclusion, Microsoft Word secures documents using strong AES encryption (128‑bit or 256‑bit). The encryption key is derived from the password through a robust process involving hashing (SHA‑1 or SHA‑2), salt, and multiple iterations, ensuring high security. While metadata such as salt and algorithm details is stored in the file, the actual key is never saved decryption only occurs when the correct password is provided. Note that simple modification protection without encryption does not offer real security.
Please refer to the following official Microsoft articles for more information:
Protect a Word document with a password - Microsoft Support
Encryption in Microsoft 365 | Microsoft Learn
I hope this information is helpful.
Thank you for your patience and your understanding. If you have any questions or need further assistance, please feel free to share them in the comments on this post so I can continue to support you.
I look forward to continuing the conversation.
If the answer is helpful, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.