Applications required to be non-modifiable must support organizational requirements to provide components that contain no writeable storage capability. These components must be persistent across restart and/or power on/off.

Overview

Finding ID	Version	Rule ID	IA Controls	Severity
V-36306	SRG-APP-240-NA	SV-47710r1_rule		Medium

Description
Organizations may require applications or application components to be non-modifiable or to be stored and executed on non-writeable storage. Use of non-modifiable storage ensures the integrity of the software program from the point of creation of the read-only image and eliminates the possibility of malicious code insertion. Rationale for non-applicability: The MDM server must be capable of being updated with patches at any time, and therefore must be modifiable.

Description

Organizations may require applications or application components to be non-modifiable or to be stored and executed on non-writeable storage. Use of non-modifiable storage ensures the integrity of the software program from the point of creation of the read-only image and eliminates the possibility of malicious code insertion. Rationale for non-applicability: The MDM server must be capable of being updated with patches at any time, and therefore must be modifiable.

STIG	Date
Mobile Device Manager Security Requirements Guide	2013-01-24

Details

Check Text ( C-44547r1_chk )
This requirement is NA for the MDM server SRG.

Fix Text (F-40837r1_fix)
The requirement is NA. No fix is required.