The operating system must provide the capability to capture/record and log all content related to a user session.

Overview

Finding ID	Version	Rule ID	IA Controls	Severity
V-33263	SRG-OS-000252-NA	SV-43682r1_rule		Medium

Description
Session auditing activities are developed, integrated, and used in consultation with legal counsel in accordance with applicable federal laws, Executive Orders, directives, policies, or regulations. Rationale for non-applicability: Resource constraints on mobile devices preclude implementation of all IA functions. The applicability of this control may be reconsidered at a future date if subsequent generations of mobile devices are better able to support this control and the applications and data typically on the device justify its implementation.

Description

Session auditing activities are developed, integrated, and used in consultation with legal counsel in accordance with applicable federal laws, Executive Orders, directives, policies, or regulations. Rationale for non-applicability: Resource constraints on mobile devices preclude implementation of all IA functions. The applicability of this control may be reconsidered at a future date if subsequent generations of mobile devices are better able to support this control and the applications and data typically on the device justify its implementation.

STIG	Date
Mobile Operating System Security Requirements Guide	2013-04-12

Details

Check Text ( C-41560r1_chk )
This requirement is NA for the Mobile OS SRG.

Fix Text (F-37193r1_fix)
The requirement is NA. No fix is required.