Finding ID | Version | Rule ID | IA Controls | Severity |
---|---|---|---|---|
V-251825 | KNOX-12-110230 | SV-251825r814231_rule | Medium |
Description |
---|
If the user is able to add a personal email account (POP3, IMAP, EAS) to the work email app, it could be used to forward sensitive DoD data to unauthorized recipients. Restricting email account addition to the Administrator or to allowlisted accounts mitigates this vulnerability. SFR ID: FMT_MOF_EXT.1.2 #47 |
STIG | Date |
---|---|
Samsung Android 12 with Knox 3.x COBO Security Technical Implementation Guide | 2022-06-07 |
Check Text ( C-55285r814229_chk ) |
---|
Review the configuration to determine if the Samsung Android devices are preventing users from adding personal email accounts to the work email app. On the management tool, in the device restrictions section, verify "Modify accounts" is set to "Disallow". On the Samsung Android device: 1. Open Settings >> Accounts and backup >> Manage accounts. 2. Verify that no account can be added. If on the management tool "Modify accounts" is not set to "Disallow", or on the Samsung Android device an account can be added, this is a finding. |
Fix Text (F-55239r814230_fix) |
---|
Configure the Samsung Android devices to prevent users from adding personal email accounts to the work email app. On the management tool, in the device restrictions, set "Modify accounts" to "Disallow". |