Windows Phone 8.1 must be configured to disable USB mass storage mode.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-58937 | MSWP-81-100603 | SV-73367r1_rule | Medium |
| Description |
|---|
| This data transfer capability could allow users to transfer sensitive DoD data onto unauthorized USB storage devices, thus leading to the compromise of this DoD data. SFR ID: FMT_SMF.1.1 #42 |
| STIG | Date |
|---|---|
| Microsoft Windows Phone 8.1 Security Technical Implementation Guide | 2015-05-13 |
Details
| Check Text ( C-59767r2_chk ) |
|---|
| This validation procedure is performed only on the MDM administration console. On the MDM administration console: 1. Ask the MDM administrator to verify the phone compliance policy. 2. Find the "Allow USB Connection" setting. 3. Verify the "Allow USB Connection Setting" is disabled. If the MDM does not have a compliance policy that disables USB connectivity, this is a finding. |
| Fix Text (F-64331r1_fix) |
|---|
| Configure the MDM system to require the Allow USB Connection policy to be disabled for Windows Phone devices. Deploy the MDM policy on managed devices. |