The MDM server must associate digital certificates used to sign applications, security policies, etc., with information exchanged between information systems.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-36252 | SRG-APP-203-MDM-231-MDM | SV-47656r1_rule | Low |
| Description |
|---|
| When data is exchanged between information systems, the security attributes associated with said data needs to be maintained. If the associated keys are disrupted application integrity is lost. |
| STIG | Date |
|---|---|
| Mobile Device Manager Security Requirements Guide | 2013-01-24 |
Details
| Check Text ( C-44492r1_chk ) |
|---|
| Review MDM server documentation to validate the MDM server associates digital certificates used to sign applications, security policies, etc., with information exchanged between information systems. If the MDM server does not associate digital certificates used to sign applications, security policies, etc., with information exchanged between information systems, this is a finding. |
| Fix Text (F-40782r1_fix) |
|---|
| Configure the MDM server to associate digital certificates used to sign applications, security policies, etc., with information exchanged between information systems. |