UCF STIG Viewer Logo
Changes are coming to https://stigviewer.com. Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey

Smart Card Readers (SCRs) used with smartphones must have required software version installed.


Overview

Finding ID Version Rule ID IA Controls Severity
V-24982 WIR-MOS-iOS-002 SV-30781r2_rule ECSC-1 Low
Description
Required security features are not available in earlier software versions. In addition, there may be known vulnerabilities in earlier versions.
STIG Date
Apple iOS 5 Security Technical Implementation Guide (STIG) 2012-07-20

Details

Check Text ( C-31197r4_chk )
Detailed Policy Requirements:
If a Bluetooth smart card reader is used only the following models and firmware versions should be used:

SCR: Biometric Associates, LP (BAL) baiMobile BAL-3000MP Bluetooth Smart Card Reader. Firmware version v2.01.00 or later should be used (version v2.02.00 is recommended).

Bluetooth adapter: Biometric Associates, LP (BAL) baiMobile BAL-BTA001 Bluetooth Adapter. Firmware version 2.01.00 or later should be used (version v2.02.00 is recommended).

Check Procedures:
SCR: The version of the reader firmware is displayed when the user presses and holds the Action button for a couple of seconds.

Bluetooth adapter: Model and firmware are printed on the label attached to the adapter.

For wired smart card readers, check to see if the vendor has completed JITC PKI interoperability testing. Ask to see a copy of the JITC certification. The firmware version should be the same as listed in the JITC certification (or later version).

Mark as a finding if the firmware version on the SCR and adapter are not the approved versions.
Fix Text (F-27623r1_fix)
Install required SCR software version.