The mobile operating system must give the user the option to deny acceptance of a certificate if it cannot verify the certificates revocation status.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-32986 | SRG-OS-000066-MOS-000035 | SV-43384r1_rule | Low |
| Description |
|---|
| The mobile operating system must give the user the option to deny acceptance of a certificate if it cannot verify the certificate's revocation status. |
| STIG | Date |
|---|---|
| Mobile Operating System Security Requirements Guide | 2012-10-01 |
Details
| Check Text ( C-41284r1_chk ) |
|---|
| Inspect the mobile operating system configuration for providing the user the option to deny acceptance of a certificate if it cannot verify the certificate's revocation status. If the operating system does not allow the user to reject the certificate when it cannot validate the certificate's revocation status, this is a finding. |
| Fix Text (F-36899r1_fix) |
|---|
| Configure the mobile operating system to give the user the option to deny acceptance of a certificate if it cannot verify the certificate's revocation status. |