Applications must prevent encrypted data from bypassing content-checking mechanisms.

Overview

Finding ID	Version	Rule ID	IA Controls	Severity
V-36384	SRG-APP-056-NA	SV-47788r1_rule		Medium

Description
Information flow control regulates where information is allowed to travel within an information system and between information systems (as opposed to who is allowed to access the information) and without explicit regard to subsequent accesses to that information. Rationale for non-applicability: The MDM server must protect data from being content checked by network mechanisms to comply with requirement SRG-APP-196-MDM server-212-MEM to protect confidentiality of communications.

Description

Information flow control regulates where information is allowed to travel within an information system and between information systems (as opposed to who is allowed to access the information) and without explicit regard to subsequent accesses to that information. Rationale for non-applicability: The MDM server must protect data from being content checked by network mechanisms to comply with requirement SRG-APP-196-MDM server-212-MEM to protect confidentiality of communications.

STIG	Date
Mobile Device Manager Security Requirements Guide	2013-01-24

Details

Check Text ( C-44626r1_chk )
This requirement is NA for the MDM server SRG.

Fix Text (F-40916r1_fix)
The requirement is NA. No fix is required.