Changes are coming to https://stigviewer.com.
Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey
The operating system must uniquely identify and must authenticate organizational users (or processes acting on behalf of organizational users).
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-33070 | SRG-OS-000104-NA | SV-43468r1_rule | Medium |
| Description |
|---|
| To assure accountability and prevent unauthorized access, organizational users shall be identified and authenticated. Rationale for non-applicability: For the purposes of this SRG, a mobile operating system is assumed to support a single human-accessible user account. In this context, there is no need to uniquely identify the user. Unique identification of application processes is inherent in other IA controls for application sandboxing under CCI-000022. |
| STIG | Date |
|---|---|
| Mobile Operating System Security Requirements Guide | 2013-07-03 |
Details
| Check Text ( C-41337r1_chk ) |
|---|
| This requirement is NA for the Mobile OS SRG. |
| Fix Text (F-36971r1_fix) |
|---|
| The requirement is NA. No fix is required. |