Use new key on password change
Supported on: At least Windows Server 2008 R2 or Windows 7
Registry
HKCU
software\policies\microsoft\office\16.0\word\security\crypto Value name: newkeyonpwdchange
Enabled: newkeyonpwdchange = 1
Disabled: newkeyonpwdchange = 0
Description
This policy setting allows you to specify if a new encryption key is used when the password is changed. If you enable or do not configure this policy setting, a new intermediate key is generated when the password is changed. This causes any extra key encryptors to be removed when the file is saved. If you disable this policy setting, a new intermediate key is not generated when the password is changed.