Finding ID | Version | Rule ID | IA Controls | Severity |
---|---|---|---|---|
V-53047 | GOOD-00-000550 | SV-67263r1_rule | Low |
Description |
---|
The contact list data elements may contain sensitive or PII information; therefore, the data elements accessed outside the security container must be limited so sensitive data is not exposed. |
STIG | Date |
---|---|
Good for Enterprise 8.x Security Technical Implementation Guide | 2014-08-18 |
Check Text ( C-54551r1_chk ) |
---|
Review the Good Mobility Suite server configuration to determine whether the email client restricts contact list data elements transferred to the phone application. Otherwise, this is a finding. |
Fix Text (F-57857r2_fix) |
---|
Configure the Good Mobility Suite to restrict contact list data elements transferred to the phone application. -Launch the Good Mobile Control Web console and click on the Policies tab -Select the policy set for the smart phone and select the Messaging tab -Verify Enable access to Good Contacts is checked -Click on Choose Fields to select the fields to sync - Name and Phone Number |