The Samsung Android device must be configured to disable all data signaling over [assignment: list of externally accessible hardware ports (for example, USB)].
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
| V-258700 | KNOX-14-225080 | SV-258700r959010_rule | CCI-002235 | medium |
| Description | ||||
| If a user is able to configure the security setting, the user could inadvertently or maliciously set it to a value that poses unacceptable risk to DOD information systems. An adversary could exploit vulnerabilities created by the weaker configuration to compromise DOD sensitive information. SFR ID: FMT_MOF_EXT.1.2 #24 | ||||
| STIG | Date | |||
| Samsung Android OS 14 with Knox 3.x COPE Security Technical Implementation Guide | 2024-12-06 | |||
Details
Check Text (C-258700r959010_chk)
Review the device configuration to confirm the USB port is disabled except for charging the device.
On the management tool:
Verify "Enable USB data signaling" is toggled to "OFF".
If on the management tool the USB port is not disabled, this is a finding.
Fix Text (F-62349r931299_fix)
Configure the Samsung Android 14 device to disable the USB port (except for charging the device).
On the management tool:
Toggle "Enable USB data signaling" to "OFF".