Applications designed to address malware issues and/or enforce policy pertaining to organizational use of mobile code must take corrective actions, when unauthorized mobile code is identified.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-36193 | SRG-APP-207-NA | SV-47597r1_rule | Medium |
| Description |
|---|
| Decisions regarding the employment of mobile code within organizational information systems are based on the potential for the code to cause damage to the system if used maliciously. Rationale for non-applicability: An MDM server is not designed to enforce policy pertaining to use of mobile code. |
| STIG | Date |
|---|---|
| Mobile Device Manager Security Requirements Guide | 2013-01-24 |
Details
| Check Text ( C-44433r1_chk ) |
|---|
| This requirement is NA for the MDM server SRG. |
| Fix Text (F-40723r1_fix) |
|---|
| The requirement is NA. No fix is required. |