Smart Card Readers (SCRs) used with smartphones must have required software version installed.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-24982 | WIR-MOS-iOS-002 | SV-30781r1_rule | ECSC-1 | Low |
| Description |
|---|
| Required security features are not available in earlier software versions. In addition, there may be known vulnerabilities in earlier versions. |
| STIG | Date |
|---|---|
| Apple iOS 4 (Good Mobility Suite) Interim Security Configuration Guide (ISCG) | 2011-11-07 |
Details
| Check Text ( C-31197r1_chk ) |
|---|
| Detailed Policy Requirements: iOS devices require a separate Bluetooth smart card reader (SCR) and Bluetooth adapter. Only the following models and firmware versions should be used: SCR: Biometric Associates, LP (BAL) baiMobile BAL-3000MP Bluetooth Smart Card Reader. Firmware version v2.01.00 or later should be used (version v2.02.00 is recommended). Bluetooth adapter: Biometric Associates, LP (BAL) baiMobile BAL-BTA001 Bluetooth Adapter. Firmware version 2.01.00 or later should be used (version v2.02.00 is recommended). Check Procedures: SCR: The version of the reader firmware is displayed when the user presses and holds the Action button for a couple of seconds. Bluetooth adapter: Model and firmware are printed on the label attached to the adapter. Mark as a finding if the firmware version on the SCR and adapter are not the approved versions. |
| Fix Text (F-27623r1_fix) |
|---|
| Install required SCR software version. |