The MDM server must protect the confidentiality and integrity of information at rest.

Overview

Finding ID	Version	Rule ID	IA Controls	Severity
V-36059	SRG-APP-231-MDM-055-SRV	SV-47449r1_rule		Medium

Description
This control is intended to address the confidentiality and integrity of information at rest in non-mobile devices and covers user information and system information. Information at rest refers to the state of information when it is located on a secondary storage device (e.g., disk drive, tape drive). The MDM server must ensure the data being written to these devices is protected. In most cases, this is done via encryption. Without encryption, data while at rest can be copied from secondary storage by an attacker.

Description

This control is intended to address the confidentiality and integrity of information at rest in non-mobile devices and covers user information and system information. Information at rest refers to the state of information when it is located on a secondary storage device (e.g., disk drive, tape drive). The MDM server must ensure the data being written to these devices is protected. In most cases, this is done via encryption. Without encryption, data while at rest can be copied from secondary storage by an attacker.

STIG	Date
Mobile Device Manager Security Requirements Guide	2013-01-24

Details

Check Text ( C-44298r1_chk )
Review the MDM server configuration to ensure the system is protecting the confidentiality and integrity of information at rest. If the MDM server is not configured in this fashion, this is a finding.

Fix Text (F-40589r1_fix)
Configure the MDM server to protect the confidentiality and integrity of information at rest.