UCF STIG Viewer Logo

The Samsung DeX Station multimedia dock must not be connected directly to a DoD network.


Overview

Finding ID Version Rule ID IA Controls Severity
V-76597 KNOX-07-017000 SV-91293r1_rule Medium
Description
If the Samsung DeX Station multimedia dock is connected to a DoD network, the Samsung smartphone connected to the DeX Station will be connected to the DoD network as well. The Samsung smartphone most likely has a number of personal apps installed that may include malware or have high risk behaviors (for example, off load data from the phone to third-party servers outside the United States). In addition, Smartphones do not generally meet security requirements for computer devices to connect directly to DD networks. Note: The Samsung DeX Station will not work unless "USB host storage" is enabled (see requirement KNOX-07-012600 for more information). SFR ID: FMT_MOF_EXT.1.2 #47
STIG Date
Samsung Android OS 7 with Knox 2.x Security Technical Implementation Guide 2019-10-01

Details

Check Text ( C-76265r1_chk )
Review Samsung DeX Station installations at the site and verify the stations are not connected to DoD networks via wired or wireless connections.

If Samsung DeX Station installations at the site are connected to DoD networks via wired or wireless connections, this is a finding.

Note: Connections to a site's guest wired or wireless network that provides Internet-only access can be used.

Note: This setting cannot be managed by the MDM administrator and is a User Based Enforcement (UBE) requirement.
Fix Text (F-83291r1_fix)
When using the DeX Station multimedia dock with a DoD Samsung smartphone, do not connect the DeX Station to a DoD network via a wired or wireless connection.

Note: This setting cannot be managed by the MDM administrator and is a User Based Enforcement (UBE) requirement.