Check: KNOX-09-000785
Samsung Android OS 9 with Knox 3.x COPE Use Case KPE(Legacy) Deployment STIG:
KNOX-09-000785
(in versions v1 r5 through v1 r1)
Title
Samsung Android Workspace must be configured to disallow the Share Via List feature. (Cat II impact)
Discussion
The Share Via List feature allows the transfer of data between nearby Samsung devices via Android Beam, Wi-Fi Direct, Link Sharing, and Share to Device. If sharing were enabled, sensitive DoD data could be compromised. SFR ID: FMT_SMF_EXT.1.1 #47
Check Content
Review the Samsung Android Workspace configuration settings to confirm that Share Via List is disallowed. This procedure is performed on both the MDM Administration console and the Samsung Android device. On the MDM console, for the Workspace, in the "Knox restrictions" group, verify that "disallow share via list" is selected. On the Samsung Android device, in the Workspace, attempt to share by long pressing a file and tapping "Share". If on the MDM console "disallow share via list" is not selected, or on the Samsung Android device the user is able to share in the Workspace, this is a finding.
Fix Text
Configure Samsung Android Workspace to disallow Share Via List. On the MDM console, for the Workspace, in the "Knox restrictions" group, select "disallow share via list". Note: Disabling "share via list" will also disable functionality such as "Gallery Sharing" and "Direct Sharing".
Additional Identifiers
Rule ID: SV-217820r388482_rule
Vulnerability ID: V-217820
Group Title: PP-MDF-991000
Expert Comments
CCIs
Number | Definition |
---|---|
CCI-000366 |
The organization implements the security configuration settings. |
Controls
Number | Title |
---|---|
CM-6 |
Configuration Settings |