The operating system must employ automated mechanisms to facilitate the monitoring and control of remote access methods.

Overview

Finding ID	Version	Rule ID	IA Controls	Severity
V-32948	SRG-OS-000032-NA	SV-43346r1_rule		Medium

Description
Remote network access is accomplished by leveraging common communication protocols to establish a remote connection. Rationale for non-applicability: When the mobile OS is performing remote access to a DoD network, remote access limitations are enforced at the enclave boundary, not on the mobile OS. In some cases, the mobile OS will support remote access of other devices to the device running the mobile OS (e.g., the personal hotspot use case, and USB tethering). SRG-OS-000229-MOS-000117 (corresponding to CCI-000370) better addresses this case. Automated mechanisms to monitor these special cases of remote access are not necessary given authentication requirements and the highly localized nature of the remote access.

Description

Remote network access is accomplished by leveraging common communication protocols to establish a remote connection. Rationale for non-applicability: When the mobile OS is performing remote access to a DoD network, remote access limitations are enforced at the enclave boundary, not on the mobile OS. In some cases, the mobile OS will support remote access of other devices to the device running the mobile OS (e.g., the personal hotspot use case, and USB tethering). SRG-OS-000229-MOS-000117 (corresponding to CCI-000370) better addresses this case. Automated mechanisms to monitor these special cases of remote access are not necessary given authentication requirements and the highly localized nature of the remote access.

STIG	Date
Mobile Operating System Security Requirements Guide	2013-04-12

Details

Check Text ( C-41249r1_chk )
This requirement is NA for the Mobile OS SRG.

Fix Text (F-36863r1_fix)
The requirement is NA. No fix is required.