Finding ID | Version | Rule ID | IA Controls | Severity |
---|---|---|---|---|
V-69681 | KNOX-39-015300 | SV-84303r1_rule | Medium |
Description |
---|
Application notifications can include DoD sensitive data. If made available outside the container, this information will be accessible to personal applications, resulting in potential compromise of DoD data. SFR ID: FMT_SMF_EXT.1.1 #45 |
STIG | Date |
---|---|
Samsung Android OS 6 (with KNOX 2.x) Security Technical Implementation Guide | 2016-11-14 |
Check Text ( C-70123r1_chk ) |
---|
This validation procedure is performed on both the MDM Administration Console and the Samsung KNOX for Android device. Check whether the appropriate setting is configured on the MDM Administration Console: 1. Ask the MDM administrator to display the "Allow Show detailed notifications" setting in the "Android KNOX Container >> Container Restrictions" rule. 2. Verify the setting is disabled. On the Samsung KNOX for Android device: 1. Open the KNOX container. 2. Select "KNOX Settings". 3. Select "Notifications". 4. Verify "Show details" is disabled and attempt to enable this setting. If the "Allow Show detailed notifications" configuration in the MDM console is enabled, or if the user is able to successfully enable this setting, this is a finding. |
Fix Text (F-75885r1_fix) |
---|
Configure the mobile operating system to disable sharing of notification details outside the container. On the MDM Administration Console, disable the "Allow Show detailed notifications" setting in the "Android KNOX Container >> Container Restrictions" rule. |