Finding ID | Version | Rule ID | IA Controls | Severity |
---|---|---|---|---|
V-32762 | WIR-WMS-MDIS-15 | SV-43108r1_rule | ECTP-1 | High |
Description |
---|
One of the key capabilities of the MDIS feature is the capability to determine if the device has been compromised. The MDIS must not be modified by any device management feature to ensure integrity of the feature and must be able to monitor the compliance of device management. |
STIG | Date |
---|---|
Mobile Device Integrity Scanning (MDIS) Server Security Technical Implementation Guide (STIG) | 2012-07-20 |
Check Text ( C-41096r6_chk ) |
---|
Verify the MDIS server and agent operates separate and independent of the management of the mobile device security policy. Talk to the site system administrator and have them show this capability exists in the MDIS server. Also, review MDIS product documentation. Mark as a finding if the MDIS server does not have required features. |
Fix Text (F-36644r3_fix) |
---|
Use a MDIS product that operates separate and independent of the management of the mobile device security policy. |