Changes are coming to https://stigviewer.com.
Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey
Android 14 devices must be configured to disable the use of third-party keyboards (work profile only).
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-260171 | GOOG-14-710900 | SV-260171r948718_rule | Medium |
| Description |
|---|
| Many third-party keyboard applications are known to contain malware. SFR ID: FMT_SMF_EXT.1.1 #47 |
| STIG | Date |
|---|---|
| Google Android 14 MDFPP 3.3 BYOAD Security Technical Implementation Guide | 2024-02-20 |
Details
| Check Text ( C-63902r948716_chk ) |
|---|
| Review the managed Google Android 14 configuration settings to confirm that no third-party keyboards are enabled (work profile only). This procedure is performed on the EMM console. On the EMM console: 1. Open "Input methods". 2. Tap "Set input methods". 3. Verify only the approved keyboards are selected. If unapproved third-party keyboards are allowed in the work profile, this is a finding. |
| Fix Text (F-63809r948717_fix) |
|---|
| Configure the Google Android 14 device to disallow the use of third-party keyboards (work profile only). On the EMM console: 1. Open "Input methods". 2. Tap "Set input methods". 3. Select only the approved keyboards. Additionally, admins can configure application allowlists for Google Play so no third-party keyboards are available for user installation. |