UCF STIG Viewer Logo

The mobile operating system must be able to filter both inbound and outbound traffic based on IP address and UDP/TCP port.


Overview

Finding ID Version Rule ID IA Controls Severity
V-33130 SRG-OS-000152-MOS-000079 SV-43528r1_rule Low
Description
Open ports provide an attack surface that an adversary can then potentially use to breach system security. If an adversary can communicate with the mobile device from any IP address, then the device may be open to any other device on the Internet. Reducing the attack surface through IP address and port restrictions mitigates this risk.
STIG Date
Mobile Operating System Security Requirements Guide 2013-07-03

Details

Check Text ( C-41389r1_chk )
Review the system documentation and operating system configuration to determine if the operating system is able to filter both inbound and outbound traffic based on IP address and TCP/UDP port. If the operating system cannot support this functionality, this is a finding.
Fix Text (F-37030r1_fix)
Configure the mobile operating system to filter both inbound and outbound traffic based on IP address and UDP/TCP port.