Changes are coming to https://stigviewer.com.
Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey
The mobile device Wi-Fi radio must be disabled as the default setting and is enabled only when Wi-Fi connectivity is required.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-25020 | WIR-MOS-iOS-041 | SV-34931r2_rule | ECWN-1 | Low |
| Description |
|---|
| The Wi-Fi radio can be used by a hacker to connect to the CMD without the knowledge of the user. Sensitive DoD data could be exposed and the hacker could use the device to attack the enclave. |
| STIG | Date |
|---|---|
| Apple iOS 6 Interim Security Configuration Guide (ISCG) | 2013-01-17 |
Details
| Check Text ( C-31223r3_chk ) |
|---|
| This is a User Based Enforcement (UBE) setting. On a sample of site-managed iOS devices (pick 3-4 random devices), check that the Wi-Fi radio is turned off. -Have the user turn on and log into the device. -Go to Settings > Wi-Fi. Wi-Fi should be turned off. Mark as a finding if configuration is not set as required. |
| Fix Text (F-27691r4_fix) |
|---|
| Train user to disable the CMD Wi-Fi radio unless Wi-Fi connectivity is desired for a known authorized Wi-Fi connection. |