Finding ID | Version | Rule ID | IA Controls | Severity |
---|---|---|---|---|
V-53055 | GOOD-00-000510 | SV-67271r1_rule | Medium |
Description |
---|
The operating system must enforce software installation by users based upon what types of software installations are permitted (e.g., updates and security patches to existing software) and what types of installations are prohibited (e.g., software whose pedigree with regard to being potentially malicious is unknown or suspect) by the organization. The installation and execution of unauthorized software on an operating system may allow the application to obtain sensitive information or further compromise the system. Preventing a user from installing unapproved applications mitigates this risk. All OS core applications, third-party applications, and carrier-installed applications must be approved. In this case, applications include any applets, browse channel apps, and icon apps. |
STIG | Date |
---|---|
Good for Enterprise 8.x Security Technical Implementation Guide | 2014-08-18 |
Check Text ( C-54559r1_chk ) |
---|
Review the Good Mobility Suite server configuration to determine if the mobile device user is prohibited from installing unapproved applications on the mobile device. Otherwise, this is a finding. |
Fix Text (F-57865r2_fix) |
---|
Configure the Good Mobility Suite to prohibit the mobile device user from installing unapproved applications on the mobile device. -Launch the Good Mobile Control Web console and click on the Policies tab -Select the policy set for the smart phone -On the left tab, select iOS Configuration and select the Restrictions Tab -Verify Allow installing apps is unchecked |