Changes are coming to https://stigviewer.com.
Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey
The mobile operating system must conduct a device integrity scan on a minimum organizationally-defined periodic basis.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-33194 | SRG-OS-000202-MOS-000110 | SV-43592r2_rule | Low |
| Description |
|---|
| Unauthorized changes to the operating system software or information on the system can possibly result in integrity or availability concerns. In order to quickly react to this situation, the operating system must detect these changes. One aspect of detection is the frequency at which the scans occur. The ability to set an appropriate frequency mitigates the risk that an attack will go without detection longer than the scanning interval. |
| STIG | Date |
|---|---|
| Mobile Operating System Security Requirements Guide | 2013-07-03 |
Details
| Check Text ( C-41455r2_chk ) |
|---|
| Review the operating system and MDM agent software settings to verify the device integrity validation scan frequency is configurable to a minimum, organizationally-defined period. If it is not, this is a finding |
| Fix Text (F-37095r2_fix) |
|---|
| Configure the mobile operating system to scan the device on a minimum, organizationally-defined periodic basis. |