Applications designed to enforce policy pertaining to the use of mobile code must prevent the automatic execution of mobile code in organization defined software applications and require organization defined actions prior to executing the code.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-36329 | SRG-APP-210-NA | SV-47733r1_rule | Medium |
| Description |
|---|
| Decisions regarding the employment of mobile code within organizational information systems are based on the potential for the code to cause damage to the system if used maliciously. Rationale for non-applicability: An MDM server is not designed to enforce policy pertaining to use of mobile code. |
| STIG | Date |
|---|---|
| Mobile Device Manager Security Requirements Guide | 2013-01-24 |
Details
| Check Text ( C-44570r1_chk ) |
|---|
| This requirement is NA for the MDM server SRG. |
| Fix Text (F-40860r1_fix) |
|---|
| The requirement is NA. No fix is required. |