Applications designed to enforce policy pertaining to organizational use of mobile code must prevent the download and execution of prohibited mobile code.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-36332 | SRG-APP-209-NA | SV-47736r1_rule | Medium |
| Description |
|---|
| Decisions regarding the employment of mobile code within organizational information systems are based on the potential for the code to cause damage to the system if used maliciously. Rationale for non-applicability: An MDM server is not designed to enforce policy pertaining to use of mobile code. |
| STIG | Date |
|---|---|
| Mobile Device Manager Security Requirements Guide | 2013-01-24 |
Details
| Check Text ( C-44573r1_chk ) |
|---|
| This requirement is NA for the MDM server SRG. |
| Fix Text (F-40863r1_fix) |
|---|
| The requirement is NA. No fix is required. |