Finding ID | Version | Rule ID | IA Controls | Severity |
---|---|---|---|---|
V-250446 | GOOG-12-010500 | SV-250446r802694_rule | Medium |
Description |
---|
The autofill services allow the user to complete text inputs that could contain sensitive information, such as personally identifiable information (PII), without previous knowledge of the information. By allowing the use of autofill services, an adversary who learns a user's Android 12 device password, or who otherwise is able to unlock the device, may be able to further breach other systems by relying on the autofill services to provide information unknown to the adversary. By disabling the autofill services, the risk of an adversary gaining further information about the device's user or compromising other systems is significantly mitigated. Examples of apps that offer autofill services include Samsung Pass, Google, Dashlane, LastPass, and 1Password. SFR ID: FMT_SMF_EXT.1.1 #47 |
STIG | Date |
---|---|
Google Android 12 COPE Security Technical Implementation Guide | 2021-09-17 |
Check Text ( C-53881r802692_chk ) |
---|
Review the Google Android 12 work profile configuration settings to confirm that autofill services are disabled. This procedure is performed only on the EMM Administration console. On the EMM console: COPE: 1. Open "Set user restrictions". 2. Verify that "Disable autofill" is toggled to ON. If on the EMM console "disallow autofill" is not selected, this is a finding. |
Fix Text (F-53835r802693_fix) |
---|
Configure the Google Android 12 device work profile to disable the autofill services. On the EMM console: COPE: 1. Open "Set user restrictions". 2. Toggle "Disable autofill" to ON. |