STIGQter STIGQter: STIG Summary: Samsung Android OS 9 with Knox 3.x COBO Use Case KPE(Legacy) Deployment Security Technical Implementation Guide Version: 1 Release: 4 Benchmark Date: 24 Jul 2020:

Samsung Android must be configured to enforce an application installation policy by specifying one or more authorized application repositories, including [DoD-approved commercial app repository, MDM server, mobile application store]: - disallow unknown app installation sources.

DISA Rule

SV-103655r1_rule

Vulnerability Number

V-93569

Group Title

PP-MDF-301080

Rule Version

KNOX-09-000135

Severity

CAT II

CCI(s)

Weight

10

Fix Recommendation

Configure Samsung Android to disallow installation from unauthorized application repositories.

On the MDM console, for the device, in the "Knox restrictions" group, unselect "allow install unknown sources".

Check Contents

Review device configuration settings to confirm that installation from unauthorized application repositories is disallowed.

This procedure is performed on both the MDM Administration console and the Samsung Android device.

On the MDM console, for the device, in the "Knox restrictions" group, verify that "allow install unknown sources" is not selected.

On the Samsung Android device, do the following:
1. Open Settings.
2. Tap "Apps".
3. Tap the Overflow menu (three vertical dots).
4. Tap "Special Access".
5. Tap "Install unknown apps".
6. Tap a listed app.
7. Verify that "Allow from this source" cannot be enabled.

If on the MDM console "allow install unknown source" is selected, or on the Samsung Android device the user can enable "allow from this source" for an app, this is a finding.

Vulnerability Number

V-93569

Documentable

False

Rule Version

KNOX-09-000135

Severity Override Guidance

Review device configuration settings to confirm that installation from unauthorized application repositories is disallowed.

This procedure is performed on both the MDM Administration console and the Samsung Android device.

On the MDM console, for the device, in the "Knox restrictions" group, verify that "allow install unknown sources" is not selected.

On the Samsung Android device, do the following:
1. Open Settings.
2. Tap "Apps".
3. Tap the Overflow menu (three vertical dots).
4. Tap "Special Access".
5. Tap "Install unknown apps".
6. Tap a listed app.
7. Verify that "Allow from this source" cannot be enabled.

If on the MDM console "allow install unknown source" is selected, or on the Samsung Android device the user can enable "allow from this source" for an app, this is a finding.

Check Content Reference

M

Target Key

3497

Comments