Finding ID | Version | Rule ID | IA Controls | Severity |
---|---|---|---|---|
V-66899 | LGA6-99-100052 | SV-81389r1_rule | Medium |
Description |
---|
This setting enables an application whitelist in the Work Profile. Failure to specify which applications are approved could allow unauthorized and malicious applications to be downloaded, installed, and/or executed on the mobile device, causing a compromise of DoD data accessible by these applications. SFR ID: FMT_SMF_EXT.1.1 #45 |
STIG | Date |
---|---|
LG Android 6.x Security Technical Implementation Guide | 2016-05-05 |
Check Text ( C-67535r2_chk ) |
---|
This validation procedure is performed on the MDM Administration Console. On the MDM console, do the following: 1. Ask the MDM administrator to display the Whitelisted Android Apps (for Work Profile). 2. Verify the list of apps has been approved by the AO. 3. Verify the policy has been assigned to all groups. If on the MDM console the Whitelisted Android apps (for Work Profile) contain non-AO approved apps, this is a finding. |
Fix Text (F-72999r2_fix) |
---|
Configure the mobile operating system to list only approved apps on the Whitelisted Android Apps (for Work Profile). On the MDM Administration Console, add the approved system applications in the lists of Whitelisted Android Apps (for Work Profile). |