Google Android 13 must be configured to disable all data signaling over [assignment: list of externally accessible hardware ports (for example, USB)].
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
| V-254761 | GOOG-13-012200 | SV-254761r959010_rule | CCI-002235 | medium |
| Description | ||||
| If a user is able to configure the security setting, the user could inadvertently or maliciously set it to a value that poses unacceptable risk to DOD information systems. An adversary could exploit vulnerabilities created by the weaker configuration to compromise DOD sensitive information. SFR ID: FMT_MOF_EXT.1.2 #24 | ||||
| STIG | Date | |||
| Google Android 13 COBO Security Technical Implementation Guide | 2024-12-04 | |||
Details
Check Text (C-254761r959010_chk)
Review the device configuration to confirm that the USB port is disabled except for charging the device.
On the EMM console:
1. Open "Set user restrictions".
2. Verify "Enable USB" is toggled to "OFF".
If on EMM console the USB port is not disabled, this is a finding.
Fix Text (F-58318r862481_fix)
Configure Google Android 13 device to disable the USB port (except for charging the device).
COPE and COBO:
On the EMM console:
1. Open "Set user restrictions".
2. Toggle "Enable USB" to "OFF".