UCF STIG Viewer Logo

The application must prevent non-privileged users from circumventing malicious code protection capabilities.


Overview

Finding ID Version Rule ID IA Controls Severity
V-36298 SRG-APP-273-NA SV-47702r1_rule Medium
Description
Malicious code protection software must be protected so as to prevent a non-privileged user or malicious piece of software from disabling the protection mechanism. A common tactic of malware is to identify the type of malicious code protection software running on the system and deactivate it. Malicious code includes viruses, worms, Trojan horses, and Spyware. Rationale for non-applicability: The MDM server should only be accessed by authorized administrators, which means that non-privileged accounts will not be present.
STIG Date
Mobile Device Manager Security Requirements Guide 2013-01-24

Details

Check Text ( C-44539r1_chk )
This requirement is NA for the MDM server SRG.
Fix Text (F-40829r1_fix)
The requirement is NA. No fix is required.