The Samsung Android device must be configured to disable the use of third-party keyboards.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
| V-272624 | KNOX-15-710200 | SV-272624r1098748_rule | CCI-000366 | low |
| Description | ||||
| Many third-party keyboard applications are known to contain malware. SFR ID: FMT_SMF.1.1 #47 | ||||
| STIG | Date | |||
| Samsung Android 15 MDFPP 3.3 BYOAD Security Technical Implementation Guide | 2025-04-29 | |||
Related Frameworks
4 paths across 3 frameworks
Related Frameworks
NIST 800-531 mapping
CM-6
1.00
- DISA · 1 · disa_xccdf · related
- DISA · 2025-01-23 · disa_cci_list · equivalent
NIST 800-1712 mappings
3.4.1
1.00
- DISA · 1 · disa_xccdf · related
- DISA · 2025-01-23 · disa_cci_list · equivalent
- NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
3.4.2
1.00
- DISA · 1 · disa_xccdf · related
- DISA · 2025-01-23 · disa_cci_list · equivalent
- NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
CCI1 mapping
CCI-000366
1.00
- DISA · 1 · disa_xccdf · related
Details
Check Text (C-272624r1098748_chk)
Review the managed Samsung device configuration settings to confirm that no third-party keyboards are enabled.
This procedure is performed on the management tool.
On the management tool
1. Open "Input methods".
2. Tap "Set input methods".
3. Verify only the approved keyboards are selected.
If third-party keyboards are allowed, this is a finding.
Fix Text (F-76610r1098747_fix)
Configure the Samsung device to disallow the use of third-party keyboards.
On the management tool:
1. Open "Input methods".
2. Tap "Set input methods".
3. Select only the approved keyboard.
Additionally, Administrators can configure application allowlists for Google Play that do not have any third-party keyboards for user installation.