The Samsung Android device must be configured to disable the use of third-party keyboards.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
| V-272624 | KNOX-15-710200 | SV-272624r1098748_rule | CCI-000366 | low |
| Description | ||||
| Many third-party keyboard applications are known to contain malware. SFR ID: FMT_SMF.1.1 #47 | ||||
| STIG | Date | |||
| Samsung Android 15 MDFPP 3.3 BYOAD Security Technical Implementation Guide | 2025-04-29 | |||
Details
Check Text (C-272624r1098748_chk)
Review the managed Samsung device configuration settings to confirm that no third-party keyboards are enabled.
This procedure is performed on the management tool.
On the management tool
1. Open "Input methods".
2. Tap "Set input methods".
3. Verify only the approved keyboards are selected.
If third-party keyboards are allowed, this is a finding.
Fix Text (F-76610r1098747_fix)
Configure the Samsung device to disallow the use of third-party keyboards.
On the management tool:
1. Open "Input methods".
2. Tap "Set input methods".
3. Select only the approved keyboard.
Additionally, Administrators can configure application allowlists for Google Play that do not have any third-party keyboards for user installation.