UCF STIG Viewer Logo
Changes are coming to https://stigviewer.com. Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey

Samsung Android must be configured to not allow backup of all applications, configuration data to locally connected systems.


Overview

Finding ID Version Rule ID IA Controls Severity
V-231028 KNOX-11-007000 SV-231028r608683_rule Medium
Description
Data on mobile devices is protected by numerous mechanisms, including user authentication, access control, and cryptography. When the data is backed up to an external system (either locally connected or cloud-based), many if not all of these mechanisms are no longer present. This leaves the backed-up data vulnerable to attack. Disabling backup to external systems mitigates this risk. SFR ID: FMT_SMF_EXT.1.1 #40
STIG Date
Samsung Android 11 with Knox 3.x Legacy Security Technical Implementation Guide 2020-12-08

Details

Check Text ( C-33958r592698_chk )
Verify requirement KNOX-11-006600 (Disallow USB file transfer) has been implemented.

If "Disallow USB file transfer" has not been implemented, this is a finding.
Fix Text (F-33931r592699_fix)
Verify "USB file transfer" has been "Disallowed" (see requirement KNOX-11-006600 [Legacy]).