Check: KNOX-14-210040
Samsung Android OS 14 with Knox 3.x COPE STIG:
KNOX-14-210040
(in versions v1 r2 through v1 r1)
Title
Samsung Android must be configured to enable a screen-lock policy that will lock the display after a period of inactivity. (Cat II impact)
Discussion
The screen-lock timeout helps protect the device from unauthorized access. Devices without a screen-lock timeout provide an opportunity for adversaries who gain physical access to the mobile device through loss, theft, etc. Such devices are much more likely to be in an unlocked state when acquired by an adversary, thus granting immediate access to the data on the mobile device and possibly access to DOD networks. SFR ID: FMT_SMF_EXT.1.1 #2a
Check Content
Verify requirement KNOX-14-210030 (minimum password quality) has been implemented. If a "minimum password quality" has not been implemented, this is a finding.
Fix Text
Implement a "minimum password quality" (refer to requirement KNOX-14-210030).
Additional Identifiers
Rule ID: SV-258666r931198_rule
Vulnerability ID: V-258666
Group Title: PP-MDF-333026
Expert Comments
CCIs
Number | Definition |
---|---|
CCI-000057 |
The information system initiates a session lock after the organization-defined time period of inactivity. |
Controls
Number | Title |
---|---|
AC-11 |
Session Lock |