The mobile operating system must cryptographically bind the removable media to the mobile device so data stored on the removable media can only be read by that mobile device.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-33110 | SRG-OS-000130-MOS-000074 | SV-43508r1_rule | Low |
| Description |
|---|
| When data is written to portable digital media, such as thumb drives, floppy diskettes, compact disks, and magnetic tape, etc., there is risk of data loss. Cryptographically binding the removable media to the mobile device renders the media useless when it is separated from the device. This greatly reduces the risk associated with removable media. |
| STIG | Date |
|---|---|
| Mobile Operating System Security Requirements Guide | 2013-07-03 |
Details
| Check Text ( C-41369r1_chk ) |
|---|
| Review the mobile operating system configuration to determine if removable media is cryptographically bound to the mobile device so data stored on the removable media can only be read by that mobile device. If the removable media is not bound or can be read on other devices, this is a finding. |
| Fix Text (F-37010r1_fix) |
|---|
| Configure the mobile operating system to cryptographically bind the removable media to the mobile device so data stored on the removable media can only be read by that mobile device. |