Finding ID | Version | Rule ID | IA Controls | Severity |
---|---|---|---|---|
V-35587 | SRG-APP-000232-MAPP-NA | SV-46874r1_rule | Medium |
Description |
---|
This control is intended to address the confidentiality and integrity of information at rest in non-mobile devices and covers user information and system information. Information at rest refers to the state of information when it is located on a secondary storage device (e.g., disk drive, tape drive) within an organizational information system. Alternative physical protection measures include, protected distribution systems. Rationale for non-applicability: This functionality is provided by the operating system, which is required to encrypt all data at rest using FIPS 140-2 validated cryptographic modules. |
STIG | Date |
---|---|
Mobile Application Security Requirements Guide | 2013-01-04 |
Check Text ( C-43929r1_chk ) |
---|
This requirement is NA for the MAPP SRG. |
Fix Text (F-40128r1_fix) |
---|
The requirement is NA. No fix is required. |