UCF STIG Viewer Logo
Changes are coming to https://stigviewer.com. Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey

The iOS/iPadOS 16 BYOAD must be configured so that managed data and apps are removed if the device is no longer receiving security or software updates.


Overview

Finding ID Version Rule ID IA Controls Severity
V-257093 AIOS-16-800100 SV-257093r904024_rule Medium
Description
When a BYOAD is out of compliance, DOD data and apps must be removed to protect against compromise of sensitive DOD information. Reference: DOD policy "Use of Non-Government Mobile Devices". 3.b.(1)ii. SFR ID: FMT_SMF_EXT.1.1 #47
STIG Date
Apple iOS/iPad OS 16 MDFPP 3.3 BYOAD Security Technical Implementation Guide 2023-08-14

Details

Check Text ( C-60778r904022_chk )
Verify the EMM system is configured to wipe managed data and apps if the iOS/iPadOS 16 BYOAD is no longer receiving security or software updates.

When managed data and apps are wiped, all managed data and files in the Files app must be wiped as well. The exact procedure will depend on the EMM system used at the site.

If the EMM system is not configured to wipe managed data and apps if the iOS/iPadOS 16 BYOAD is no longer receiving security or software updates, this is a finding.
Fix Text (F-60719r904023_fix)
Configure the EMM system so managed data and apps are removed if the iOS/iPadOS 16 BYOAD is no longer receiving security or software updates.

Note: When managed data and apps are wiped, all managed data and files in the Files app must be wiped as well. The exact procedure will depend on the EMM system used at the site.