UCF STIG Viewer Logo
Changes are coming to https://stigviewer.com. Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey

Apple iOS must not allow use of the Near Field Communications (NFC) radio.


Overview

Finding ID Version Rule ID IA Controls Severity
V-54315 AIOS-05-080105 SV-68561r1_rule Medium
Description
Several commercial implementations of NFC protocols are vulnerable to man-in-the-middle and replay attacks. If NFC-enabled iOS devices have similar vulnerabilities, this could enable an adversary to perform unauthorized transactions such as mobile payments. Disabling the NFC radio mitigates this risk. SFR ID: FMT_SMF.1.1 #42
STIG Date
Apple iOS 8 Interim Security Configuration Guide 2014-09-16

Details

Check Text ( C-54951r1_chk )
Review configuration settings to confirm the use of the NFC radio is disabled.

Note: This check procedure is not applicable on iOS devices that do not contain an NFC radio. As of the publication of this ISCG, iPhone 6 and iPhone 6 Plus are the only devices that contain an NFC radio.

The switch for disabling the NFC radio is expected to be in the Settings app. The switch may refer to NFC services or protocols and not the radio itself. Verify the relevant switch or switches are turned off.

If the NFC radio or services are enabled on an iOS device that supports disabling the radio or the services that use the radio, this is a finding.
Fix Text (F-59169r1_fix)
The user must disable the NFC radio or the services that use it.