Check: KNOX-14-225020
Samsung Android OS 14 with Knox 3.x COPE STIG:
KNOX-14-225020
(in versions v1 r2 through v1 r1)
Title
The Samsung Android device must be configured to enforce that Wi-Fi Sharing is disabled. (Cat II impact)
Discussion
Wi-Fi Sharing is an optional configuration of Wi-Fi Tethering/Mobile Hotspot, which allows the device to share its Wi-Fi connection with other wirelessly connected devices instead of its mobile (cellular) connection. Wi-Fi Sharing grants the "other" device access to a corporate Wi-Fi network and may possibly bypass the network access control mechanisms. This risk can be partially mitigated by requiring the use of a preshared key for personal hotspots. SFR ID: FMT_SMF_EXT.1.1 #47
Check Content
Verify requirement KNOX-14-210160 (disallow config tethering) has been implemented. If "Disallow config tethering" has not been implemented, this is a finding.
Fix Text
Implement "Disallow config tethering" (refer to requirement KNOX-14-210160).
Additional Identifiers
Rule ID: SV-258694r931282_rule
Vulnerability ID: V-258694
Group Title: PP-MDF-993300
Expert Comments
CCIs
Number | Definition |
---|---|
CCI-000366 |
The organization implements the security configuration settings. |
Controls
Number | Title |
---|---|
CM-6 |
Configuration Settings |