The MEM client must be capable of providing S/MIME v3 (or later version) encryption of email.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-32791 | WIR-WMS-MEM-10 | SV-43137r1_rule | ECCT-1 | Medium |
| Description |
|---|
| Sensitive DoD data could be exposed if the required setting is not configured on the Good server. If S/MIME support is not configured on the server, the user will not be able to view critical encrypted email or be able to encrypt email with sensitive DoD information. |
| STIG | Date |
|---|---|
| Mobile Email Management (MEM) Server Security Technical Implementation Guide (STIG) | 2013-05-08 |
Details
| Check Text ( C-41124r3_chk ) |
|---|
| Verify the MEM client is capable of providing S/MIME v3 (or later version) encryption of email. Talk to the site system administrator and have them show this capability exists in the MEM server. Also, review MEM product documentation. Mark as a finding if the MEM server does not have required features. |
| Fix Text (F-36672r2_fix) |
|---|
| Use a MEM product that is capable of providing S/MIME v3 (or later version) encryption of email. |