The MDM server device integrity validation component must alert when it identifies malicious code on managed mobile devices.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-36175 | SRG-APP-279-MDM-171-MDIS | SV-47579r1_rule | High |
| Description |
|---|
| Malicious code protection mechanisms include but are not limited to anti-virus and malware detection software. In order to minimize potential negative impact to the organization that can be caused by malicious code, it is imperative that malicious code is identified and eradicated. |
| STIG | Date |
|---|---|
| Mobile Device Manager Security Requirements Guide | 2013-01-24 |
Details
| Check Text ( C-44415r1_chk ) |
|---|
| Review the MDM server configuration to ensure the MDM server device integrity validation component alerts when it identifies malicious code on managed mobile devices. If alerting is not configured, this is a finding. |
| Fix Text (F-40705r1_fix) |
|---|
| Configure the MDM server device integrity validation component to alert when it identifies malicious code on managed mobile devices. |