The MDM server must accept alerts of certificate failures related to digital signatures on software applications or components on managed mobile devices.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-36082 | SRG-APP-053-MDM-082-MDM | SV-47473r1_rule | Medium |
| Description |
|---|
| A certificate failure related to a digital signature on software applications or components is strong evidence of a system breach. Notifying the MDM server of such an occurrence allows the enterprise to assess the situation, contain the breach if there is one, and possibly invoke incident response procedures. |
| STIG | Date |
|---|---|
| Mobile Device Manager Security Requirements Guide | 2013-01-24 |
Details
| Check Text ( C-44321r1_chk ) |
|---|
| Review the MDM server configuration to determine whether this capability is present. If the MDM server is not set to notify the user of certificate failures related to digital signatures on software applications or components, this is a finding. |
| Fix Text (F-40612r1_fix) |
|---|
| Configure the MDM server to notify the user of certificate failures related to digital signatures on software applications or components. |