The Samsung Knox for Android platform must be configured to implement the management setting: disable Wi-Fi Direct.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-56083 | KNOX-35-021500 | SV-70337r1_rule | Medium |
| Description |
|---|
| Wi-Fi Direct allows the device to connect directly to another device via Wi-Fi without accessing a Wi-Fi access point and using DoD-required security mechanisms since Wi-Fi Direct can be used by applications to exchange files between devices. Disabling this feature mitigates the risk of compromising sensitive DoD data. Note: Disabling Wi-Fi Direct also disables S Beam. SFR ID: FMT_SMF.1.1 #42 |
| STIG | Date |
|---|---|
| Samsung Android (with Knox 2.x) STIG | 2016-02-25 |
Details
| Check Text ( C-56653r1_chk ) |
|---|
| This validation procedure is performed on both the MDM Administration Console and the Samsung Knox for Android device. Check whether the appropriate setting is configured on the MDM Administration Console: 1. Ask the MDM administrator to display the "Wi-Fi Direct" setting in the "Android Restrictions" rule. 2. Verify the setting is disabled. On the Samsung Knox for Android device: 1. Open the device settings. 2. Select Wi-Fi. 3. Select settings. 4. Select Wi-Fi Direct. 5. Verify W-Fi direct cannot be enabled. If the "Wi-Fi Direct" configuration in the MDM console is enabled, or if the user is able to enable Wi-Fi Direct, this is a finding. |
| Fix Text (F-60961r1_fix) |
|---|
| Configure the mobile operating system to disable Wi-Fi Direct. On the MDM Administration Console, disable the "Wi-Fi Direct" setting in the "Android Restrictions" rule. |