Apple iOS must not allow use of the Near Field Communications (NFC) radio.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-54315 | AIOS-05-080105 | SV-68561r1_rule | Medium |
| Description |
|---|
| Several commercial implementations of NFC protocols are vulnerable to man-in-the-middle and replay attacks. If NFC-enabled iOS devices have similar vulnerabilities, this could enable an adversary to perform unauthorized transactions such as mobile payments. Disabling the NFC radio mitigates this risk. SFR ID: FMT_SMF.1.1 #42 |
| STIG | Date |
|---|---|
| Apple iOS 8 Interim Security Configuration Guide | 2014-09-16 |
Details
| Check Text ( C-54951r1_chk ) |
|---|
| Review configuration settings to confirm the use of the NFC radio is disabled. Note: This check procedure is not applicable on iOS devices that do not contain an NFC radio. As of the publication of this ISCG, iPhone 6 and iPhone 6 Plus are the only devices that contain an NFC radio. The switch for disabling the NFC radio is expected to be in the Settings app. The switch may refer to NFC services or protocols and not the radio itself. Verify the relevant switch or switches are turned off. If the NFC radio or services are enabled on an iOS device that supports disabling the radio or the services that use the radio, this is a finding. |
| Fix Text (F-59169r1_fix) |
|---|
| The user must disable the NFC radio or the services that use it. |