Finding ID | Version | Rule ID | IA Controls | Severity |
---|---|---|---|---|
V-19899 | WIR-MOS-iOS-034-04 | SV-36451r1_rule | ECWN-1 | Medium |
Description |
---|
DoD data could be compromised if transmitted data is not secured with a compliant VPN. Split tunneling could allow connections from non-secure Internet sites to access data on the DoD network. |
STIG | Date |
---|---|
Apple iOS 4 (Good Mobility Suite) Interim Security Configuration Guide (ISCG) | 2011-11-07 |
Check Text ( C-35555r1_chk ) |
---|
This check is not applicable if the installed VPN client is not used for remote access to DoD networks. This check is not applicable at this time because the iOS VPN is currently not FIPS 140-2 validated. |
Fix Text (F-20573r2_fix) |
---|
Comply with policy requirement. |