The MDIS server must accept alerts from the mobile operating system when the mobile OS has detected integrity check failures.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-32757 | WIR-WMS-MDIS-10 | SV-43103r1_rule | ECAT-1 ECAT-2 | Medium |
| Description |
|---|
| Detection of possible compromise of a DoD mobile device is a key security control to insure the compromise does not result in the exposure of sensitive DoD data or lead to a successful attack on the DoD network. The MDIS system must be able to accept alerts from the OS related to device integrity. |
| STIG | Date |
|---|---|
| Mobile Device Integrity Scanning (MDIS) Server Security Technical Implementation Guide (STIG) | 2012-07-20 |
Details
| Check Text ( C-41090r5_chk ) |
|---|
| Verify the MDIS server and agent accepts alerts from the mobile operating system when the mobile OS has detected integrity check failures. Talk to the site system administrator and have them show this capability exists in the MDIS server. Also, review MDIS product documentation. Mark as a finding if the MDIS server does not have required features. |
| Fix Text (F-36639r4_fix) |
|---|
| Use a MDIS product that accepts alerts from the mobile operating system when the mobile OS has detected integrity check failures. |