Finding ID | Version | Rule ID | IA Controls | Severity |
---|---|---|---|---|
V-32762 | WIR-WMS-MDIS-15 | SV-43108r1_rule | ECTP-1 | High |
Description |
---|
One of the key capabilities of the MDIS feature is the capability to determine if the device has been compromised. To ensure integrity of the feature, the MDIS must not be modified by any device management feature, and must be able to monitor the compliance of device management. |
STIG | Date |
---|---|
Mobile Device Integrity Scanning (MDIS) Server Security Technical Implementation Guide (STIG) | 2013-05-08 |
Check Text ( C-41096r7_chk ) |
---|
Verify the MDIS agent operates separate and independent of the management of the mobile device security policy. Talk to the site system administrator and have them show this capability exists in the MDIS server. Also, review MDIS product documentation. Mark as a finding if the MDIS agent does not have required features. |
Fix Text (F-36644r5_fix) |
---|
Use an MDIS product that operates separate and independent of the management of the mobile device security policy. |