Finding ID | Version | Rule ID | IA Controls | Severity |
---|---|---|---|---|
V-33130 | SRG-OS-000152-MOS-000079 | SV-43528r1_rule | Low |
Description |
---|
Open ports provide an attack surface that an adversary can then potentially use to breach system security. If an adversary can communicate with the mobile device from any IP address, then the device may be open to any other device on the Internet. Reducing the attack surface through IP address and port restrictions mitigates this risk. |
STIG | Date |
---|---|
Mobile Operating System Security Requirements Guide | 2013-07-03 |
Check Text ( C-41389r1_chk ) |
---|
Review the system documentation and operating system configuration to determine if the operating system is able to filter both inbound and outbound traffic based on IP address and TCP/UDP port. If the operating system cannot support this functionality, this is a finding. |
Fix Text (F-37030r1_fix) |
---|
Configure the mobile operating system to filter both inbound and outbound traffic based on IP address and UDP/TCP port. |