The operating system must enforce information flow control using protected processing domains (e.g., domain type enforcement) as a basis for flow control decisions.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-32919 | SRG-OS-000010-NA | SV-43317r1_rule | Medium |
| Description |
|---|
| Protected processing domains can be used to separate different data types. The operating system must enforce information flow control to ensure information does not pass into domains that are not authorized to process it. Rationale for non-applicability: This control maps to NIST SP 800-53 AC-4, which has been determined to apply to cross-domain solutions not within the scope of this SRG. |
| STIG | Date |
|---|---|
| Mobile Operating System Security Requirements Guide | 2013-07-03 |
Details
| Check Text ( C-41227r1_chk ) |
|---|
| This requirement is NA for the Mobile OS SRG. |
| Fix Text (F-36837r1_fix) |
|---|
| The requirement is NA. No fix is required. |