The operating system must route organization defined internal communications traffic to organization defined external networks through authenticated proxy servers within the managed interfaces of boundary protection devices.

Overview

Finding ID	Version	Rule ID	IA Controls	Severity
V-33127	SRG-OS-000149-NA	SV-43525r1_rule		Medium

Description
A proxy server is designed to hide the identity of the client when making a connection to a server outside of its network. This prevents any hackers on the outside of learning IP addresses within the private network. With a proxy acting as the mediator, the client does not interact directly with the servers it is connecting to; the proxy server is in the middle handling both sides of the session. Rationale for non-applicability: Routing of this type of traffic is enforced by the network infrastructure and not the mobile device.

Description

A proxy server is designed to hide the identity of the client when making a connection to a server outside of its network. This prevents any hackers on the outside of learning IP addresses within the private network. With a proxy acting as the mediator, the client does not interact directly with the servers it is connecting to; the proxy server is in the middle handling both sides of the session. Rationale for non-applicability: Routing of this type of traffic is enforced by the network infrastructure and not the mobile device.

STIG	Date
Mobile Operating System Security Requirements Guide	2013-07-03

Details

Check Text ( C-41386r1_chk )
This requirement is NA for the Mobile OS SRG.

Fix Text (F-37027r1_fix)
The requirement is NA. No fix is required.