Finding ID | Version | Rule ID | IA Controls | Severity |
---|---|---|---|---|
V-56113 | KNOX-35-023600 | SV-70367r1_rule | Medium |
Description |
---|
This data transfer capability could allow users to transfer sensitive DoD data onto unauthorized USB storage devices, thus leading to the compromise of this DoD data. SFR ID: FMT_SMF.1.1 #42 |
STIG | Date |
---|---|
Samsung Android (with Knox 2.x) STIG | 2015-05-20 |
Check Text ( C-56683r3_chk ) |
---|
This validation procedure is performed on both the MDM Administration Console and the PC. Check whether the appropriate setting is configured on the MDM Administration Console: 1. Ask the MDM administrator to display the "Disable USB media player" check box in the "Android Restrictions" rule. 2. Verify the "Disable USB media player" check box is selected. (Note: On new MDM consoles, disabling USB Media Player will also disable USB MTP, USB mass storage, and USB vendor protocol (KIES).) On the Samsung Knox for Android device: 1. Connect the device to a PC USB connection. Note: Do not use a DoD network-managed PC for this test! On the PC: 1. Verify the device is not shown in the PC finder. If the specified setting is not set to the appropriate value, or if the device is shown in the PC finder, this is a finding. |
Fix Text (F-61083r1_fix) |
---|
Configure the mobile device to disable data transfer capabilities for USB media player. Configure the mobile operating system to disable USB media player. On the MDM Administration Console, select the "Disable USB media player" check box in the "Android Restrictions" rule. |