Finding ID | Version | Rule ID | IA Controls | Severity |
---|---|---|---|---|
V-251812 | KNOX-12-110100 | SV-251812r814192_rule | Medium |
Description |
---|
Backups to remote systems (including cloud backup) can leave data vulnerable to breach on the external systems, which often offer less protection than the MOS. Where the remote backup involves a cloud-based solution, the backup capability is often used to synchronize data across multiple devices. In this case, DoD devices may synchronize DoD sensitive information to a user's personal device or other unauthorized computers that are vulnerable to breach. Disallowing remote backup mitigates this risk. SFR ID: FMT_SMF_EXT.1.1 #40 |
STIG | Date |
---|---|
Samsung Android 12 with Knox 3.x COBO Security Technical Implementation Guide | 2022-06-07 |
Check Text ( C-55272r814190_chk ) |
---|
Review the configuration to determine if the Samsung Android devices are disabling backup to remote systems (including commercial clouds). This validation procedure is performed on both the management tool and the Samsung Android device. On the management tool, in the device restrictions section, verify that "Backup service" is set to "Disable". On the Samsung Android device: 1. Open Settings >> Accounts and backup. 2. Verify that any backup service listed cannot be configured to back up data. If on the management tool "Backup service" is not set to "Disable", or on the Samsung Android device a listed backup service can be configured to back up data, this is a finding. |
Fix Text (F-55226r814191_fix) |
---|
Configure the Samsung Android devices to disable backup to remote systems (including commercial clouds). On the management tool, in the device restrictions, set "Backup service" to "Disable". |