Applications must meet organizational requirements to implement security functions as a layered structure minimizing interactions between layers of the design and avoiding any dependence by lower layers on the functionality or correctness of higher layers

Overview

Finding ID	Version	Rule ID	IA Controls	Severity
V-35629	SRG-APP-000238-MAPP-NA	SV-46916r1_rule		Medium

Description
The information system isolates security functions from non-security functions by means of an isolation boundary (implemented via partitions and domains) controlling access to and protecting the integrity of, the hardware, software, and firmware that perform those security functions. The information system maintains a separate execution domain (e.g., address space) for each executing process. Rationale for non-applicability: The mobile application exists at the highest security layer of the mobile device architecture. Therefore, it cannot depend on the functionality or correctness of higher layers.

Description

The information system isolates security functions from non-security functions by means of an isolation boundary (implemented via partitions and domains) controlling access to and protecting the integrity of, the hardware, software, and firmware that perform those security functions. The information system maintains a separate execution domain (e.g., address space) for each executing process. Rationale for non-applicability: The mobile application exists at the highest security layer of the mobile device architecture. Therefore, it cannot depend on the functionality or correctness of higher layers.

STIG	Date
Mobile Application Security Requirements Guide	2013-01-04

Details

Check Text ( C-43972r1_chk )
This requirement is NA for the MAPP SRG.

Fix Text (F-40169r1_fix)
The requirement is NA. No fix is required.