All wireless PDA client VPNs must have split tunneling disabled. This check is not applicable if the installed VPN client is not used for remote access to DoD networks.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-19899 | WIR-MOS-WP-034-04 | SV-40033r1_rule | ECWN-1 | Medium |
| Description |
|---|
| DoD data could be compromised if transmitted data is not secured with a compliant VPN. Split tunneling could allow connections from non-secure Internet sites to access data on the DoD network. |
| STIG | Date |
|---|---|
| Windows Phone 6.5 (with Good Mobility Suite) Security Technical Implementation Guide | 2011-10-04 |
Details
| Check Text ( C-39049r1_chk ) |
|---|
| This check is not applicable if the installed VPN client is not used for remote access to DoD networks. Interview the IAO and/or site wireless device administrator and inspect a sample (3-4) of site devices. Check to see if the VPN has a setting to disable split tunneling. Verify split tunneling has been disabled. Mark not applicable if the VPN is not used for remote access to a DoD network |
| Fix Text (F-20573r2_fix) |
|---|
| Comply with policy requirement. |