Title

S/MIME must be installed on smartphones so users can sign/encrypt email. (Cat II impact)

Discussion

S/MIME provides the capability for users to send and receive S/MIME email messages from wireless email devices. S/MIME and digital signatures provide assurance the message is authentic and is required by DoD policy. Without S/MIME users will not be able to read encrypted email and will not be able to encrypt email with sensitive information.

Check Content

Verify an S/MIME profile is installed on the Android device: -Log into the Android device -Open the Good application. Go to Preferences. -Verify Smartcard and S/MIME specific settings are listed. If not listed, mark as a finding.

Fix Text

Provision the mobile email client with S/MIME so users can digitally sign and encrypt email.

Additional Identifiers

Rule ID: SV-35013r1_rule

Vulnerability ID: V-24983

Group Title:

Expert Comments

CCIs tied to check.

Controls tied to check. These are derived from the CCIs shown above.