Mobile OS devices (smartphones/tablets) must have a system integrity validation application installed or have validation scanning, using a PC based tool, completed on the required schedule.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-30248 | WIR-MOS-AND-045-01 | SV-39856r1_rule | ECSC-1 | Medium |
| Description |
|---|
| The purpose of this scan is to determine if there has been an unexplained change in the mobile OS file system that may indicate the device has been compromised by malware or by rooting the device. |
| STIG | Date |
|---|---|
| Android 2.2 (Dell) Security Technical Implementation Guide | 2014-08-26 |
Details
| Check Text ( C-38854r1_chk ) |
|---|
| Detailed Policy Requirements: All site managed Android devices must be have the Fixmo Sentinel application integrity validation tool installed. Check Procedures: Interview the IAO and Android device Administrator. Verify the Fixmo Sentinel application is installed on site Android mobile devices. Select 4-5 Android site managed Android devices to review. For each device, have the user log into the device. Go to Settings > Applications > Manage applications. To view the list of applications on the smartphone select “All”. To view a list of applications on the SD media card select “On SD card”. Verify Sentinel is listed as an installed application. Mark as a finding if Sentinel is not installed. |
| Fix Text (F-33999r1_fix) |
|---|
| Install Fixmo Sentinel on all site managed mobile devices. |