UCF STIG Viewer Logo

The MDIS agent must operate separate and independent of the management of the mobile devices security policy.


Overview

Finding ID Version Rule ID IA Controls Severity
V-32762 WIR-WMS-MDIS-15 SV-43108r1_rule ECTP-1 High
Description
One of the key capabilities of the MDIS feature is the capability to determine if the device has been compromised. To ensure integrity of the feature, the MDIS must not be modified by any device management feature, and must be able to monitor the compliance of device management.
STIG Date
Mobile Device Integrity Scanning (MDIS) Server Security Technical Implementation Guide (STIG) 2013-05-08

Details

Check Text ( C-41096r7_chk )
Verify the MDIS agent operates separate and independent of the management of the mobile device security policy. Talk to the site system administrator and have them show this capability exists in the MDIS server. Also, review MDIS product documentation.

Mark as a finding if the MDIS agent does not have required features.
Fix Text (F-36644r5_fix)
Use an MDIS product that operates separate and independent of the management of the mobile device security policy.