Finding ID | Version | Rule ID | IA Controls | Severity |
---|---|---|---|---|
V-98943 | GOOG-10-002800 | SV-108047r1_rule | Medium |
Description |
---|
Developer modes expose features of the Google Android device that are not available during standard operation. An adversary may leverage a vulnerability inherent in a developer mode to compromise the confidentiality, integrity, and availability of DoD sensitive information. Disabling developer modes mitigates this risk. SFR ID: FMT_SMF_EXT.1.1 #26 |
STIG | Date |
---|---|
Google Android 10.x Security Technical Implementation Guide | 2019-12-18 |
Check Text ( C-97783r1_chk ) |
---|
Review Google Android device configuration settings to determine whether a developer mode is enabled. This validation procedure is performed on both the MDM Administration Console and the Android 10 device. On the MDM console, do the following: 1. Open restrictions section. 2. Open Restrictions section. 3. Toggle "Disallow debugging Features" to on. On the Android 10 device, do the following: 1. Go to Settings >> System. 2. Ensure Developer Options is not listed. If the MDM console device policy is not set to disable developer mode or on the Android 10 device, the device policy is not set to disable developer mode, this is a finding. |
Fix Text (F-104619r1_fix) |
---|
Configure the Google Android device to disable developer modes. On the MDM Console: 1. Open restrictions section. 2. Open Restrictions section. 3. Toggle "Disallow debugging Features" to on. |