Changes are coming to https://stigviewer.com.
Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey
The MDM server must protect the confidentiality and integrity of information at rest.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-36059 | SRG-APP-231-MDM-055-SRV | SV-47449r1_rule | Medium |
| Description |
|---|
| This control is intended to address the confidentiality and integrity of information at rest in non-mobile devices and covers user information and system information. Information at rest refers to the state of information when it is located on a secondary storage device (e.g., disk drive, tape drive). The MDM server must ensure the data being written to these devices is protected. In most cases, this is done via encryption. Without encryption, data while at rest can be copied from secondary storage by an attacker. |
| STIG | Date |
|---|---|
| Mobile Device Manager Security Requirements Guide | 2013-01-24 |
Details
| Check Text ( C-44298r1_chk ) |
|---|
| Review the MDM server configuration to ensure the system is protecting the confidentiality and integrity of information at rest. If the MDM server is not configured in this fashion, this is a finding. |
| Fix Text (F-40589r1_fix) |
|---|
| Configure the MDM server to protect the confidentiality and integrity of information at rest. |