Title

Computers with an embedded wireless system must have the radio removed before the computer is used to transfer, receive, store, or process classified information. (Cat I impact)

Discussion

With the increasing popularity of wireless networking, most laptops have wireless NICs installed on the laptop motherboard. Although the system administrator may disable these embedded NICs, the user may purposefully or accidentally enable the device. These devices may also inadvertently transmit ambient sound or electronic signals. Therefore, simply disabling the transmit capability is an inadequate solution for computers processing classified information. In addition, embedded wireless cards do not meet DoD security requirements for classified wireless usage.

Check Content

Interview the IAO and inspect a sample of laptops/PCs (check about 10% if possible, with priority to laptops) used at the site for classified data processing. 1. Ask if there are laptops/PCs used to process classified information and have embedded wireless NICs. No embedded wireless NICs are allowed, including WLAN, Bluetooth, WMAN, cellular, etc. 2. The NIC should be physically removed. Using methods, such as tape or software disabling are not acceptable. Interview the IAO and determine if the site either bought laptops without wireless NICs (Wi-Fi, Bluetooth, WiMax, etc.) or physically removed the NICs from laptops. Verify the site has procedures in place to ensure laptops with wireless NICs are not used for classified data processing. Mark as a finding if site is using embedded wireless NICs. If this is a finding, recommend to the DAA this is a critical finding requiring immediate action.

Fix Text

Ensure computers with embedded wireless NICs that cannot be removed and are not used to transfer, receive, store, or process classified information.

Additional Identifiers

Rule ID: SV-21976r6_rule

Vulnerability ID: V-19813

Group Title:

Expert Comments

CCIs tied to check.

Controls tied to check. These are derived from the CCIs shown above.