An error occurred:

Google Android 13 COBO STIG Version Comparison

Google Android 13 COBO Security Technical Implementation Guide

Comparison

There are 1 differences between versions v1 r1 (Nov. 9, 2022) (the "left" version) and v2 r2 (Jan. 30, 2025) (the "right" version).

Check GOOG-13-009500 was changed between these two versions. Green, underlined text was added, red, struck-out text was removed.

The regular view of the left check and right check may be easier to read.

Text Differences

Title

Google Android 13 must be configured to disable ad hoc wireless client-to-client connection capability.

Check Content

This Review the managed Google Android 13 device configuration settings to determine if the mobile device is configured to disable ad hoc wireless client-to-client connection capability. This validation procedure is performed on both the management tool MDM Administration console and the managed Google Android 13 device. On the MDM console: COBO: 1. Open "Settings Management". 2. management tool, in the user restrictions, Verify verify "Set location" is toggled "Wi-Fi Direct" has been set to "OFF". COPE: 1. Open "User restrictions on parent". 2. Verify "Disallow "Disallow". On config location" is toggled to "ON". 3. Verify "Disallow share location" is toggled to "ON". On the managed Google Android device: 1. Open 13 device: COBO and COPE: 1. Go to Settings >> Connections Network & Internet >> Network preferences. 2. Wi-Fi. 2. From the hamburger menu, select "Wi-Fi Direct". 3. Verify that "Wi-Fi Direct" cannot be selected. If on is greyed out and unavailable. If the EMM console device policy management tool "Wi-Fi Direct" is not set to disable Location sharing and configuration, "Disallow", or on the Google Android device a Wi-Fi Direct device is listed that can be connected to, this is a finding.

Discussion

Ad hoc wireless client-to-client connections allow mobile devices to communicate with each other directly, circumventing network security policies and making the traffic invisible. This could allow the exposure of sensitive DOD data and increase the risk of downloading and installing malware of on the DOD mobile device. SFR ID: FMT_SMF_EXT.1.1/WLAN

Fix

Configure the Google Android 13 device devices to disallow Wi-Fi Direct. On disable ad hoc wireless client-to-client connection capability. On the MDM console: COBO: 1. Open "Settings Management". 2. Toggle "Set location" management tool, in the user restrictions, set "Wi-Fi Direct" to "Disallow". Wi-Fi Direct connections "OFF". COPE: 1. Open "User restrictions on parent". 2. Toggle "Disallow config location" to "ON". 3. Toggle "Disallow share location" to "ON". Note: Ad hoc and pairing between Wi-Fi Direct requires Location services devices to function; therefore, disabling this setting will become unavailable. disable the ad hoc and Wi-Fi Direct feature.