UCF STIG Viewer Logo

All wireless PDA clients used for remote access to DoD networks must have a VPN supporting CAC authentication.


Overview

Finding ID Version Rule ID IA Controls Severity
V-19898 WIR-MOS-iOS-034-03 SV-36450r2_rule ECWN-1 Medium
Description
DoD data could be compromised if transmitted data is not secured with a compliant VPN.
STIG Date
Apple iOS 5 Security Technical Implementation Guide (STIG) 2012-07-20

Details

Check Text ( C-35554r2_chk )
This check is not applicable if the installed VPN client is not used for remote access to DoD networks.

Interview the IAO and/or site wireless device administrator and inspect a sample (3-4) of site devices. Review VPN client specification sheets and verify the VPN client support CAC authentication. Mark as a finding if the VPN does not support CAC authentication.
Fix Text (F-37265r3_fix)
Install a VPN client that supports CAC authentication.