Check: KNOX-14-210150
Samsung Android OS 14 with Knox 3.x COPE STIG:
KNOX-14-210150
(in versions v1 r2 through v1 r1)
Title
Samsung Android must be configured to not allow backup of all applications and configuration data to locally connected systems. (Cat II impact)
Discussion
Data on mobile devices is protected by numerous mechanisms, including user authentication, access control, and cryptography. When the data is backed up to an external system (either locally connected or cloud based), many if not all of these mechanisms are no longer present. This leaves the backed-up data vulnerable to attack. Disabling backup to external systems mitigates this risk. SFR ID: FMT_SMF_EXT.1.1 #40
Check Content
Verify requirement KNOX-14-210140 (disallow USB file transfer) has been implemented. If "Disallow USB file transfer" has not been implemented, this is a finding.
Fix Text
Ensure "USB file transfer" has been disallowed (refer to requirement KNOX-14-210140).
Additional Identifiers
Rule ID: SV-258676r931228_rule
Vulnerability ID: V-258676
Group Title: PP-MDF-333240
Expert Comments
CCIs
Number | Definition |
---|---|
CCI-001090 |
The information system prevents unauthorized and unintended information transfer via shared system resources. |
Controls
Number | Title |
---|---|
SC-4 |
Information In Shared Resources |