STIGQter: STIG Summary: Samsung Android OS 9 with Knox 3.x COPE Use Case KPE(Legacy) Deployment Security Technical Implementation Guide Version: 1 Release: 4 Benchmark Date: 24 Jul 2020:

Samsung Android Workspace must have the DoD root and intermediate PKI certificates installed.

DISA Rule

SV-104003r2_rule

Vulnerability Number

V-93917

Group Title

PP-MDF-991000

Rule Version

KNOX-09-001075

Severity

CAT II

CCI(s)

• CCI-000366 - The organization implements the security configuration settings.

Weight

10

Fix Recommendation

Configure Samsung Android Workspace to install DoD root and intermediate certificates.

On the MDM console, for the Workspace, in the "Knox certificate" group, use "install a CA certificate" to install the DoD root and intermediate certificates.

The current DoD root and intermediate PKI certificates may be obtained in self-extracting zip files at http://iase.disa.mil/pki-pke (for NIPRNet) or
http://iase.rel.disa.smil.mil/pki-pke/function_pages/tools.html (for SIPRNet).

Check Contents

Review the Samsung Android Workspace configuration settings to confirm that the DoD root and intermediate PKI certificates are installed.

This procedure is performed on both the MDM Administration console and the Samsung Android device.

The current DoD root and intermediate PKI certificates may be obtained in self-extracting zip files at http://iase.disa.mil/pki-pke (for NIPRNet).

On the MDM console, for the Workspace, in the "Knox certificate" group, verify that the DoD root and intermediate PKI certificates are listed.

On the Samsung Android device, do the following:
1. Open Settings.
2. Tap "Biometrics and security".
3. Tap "Other security settings".
4. Tap "View security certificates".
5. Verify the DoD root and intermediate certificates are listed under the "Work" list in the "User" tab.

If on the MDM console the DoD root and intermediate certificates are not listed in the "Knox certificate" group, or on the Samsung Android device "View security certificates" does not list the DoD root and intermediate certificates, this is a finding.

Vulnerability Number

V-93917

Documentable

False

Rule Version

KNOX-09-001075

Severity Override Guidance

Review the Samsung Android Workspace configuration settings to confirm that the DoD root and intermediate PKI certificates are installed.

This procedure is performed on both the MDM Administration console and the Samsung Android device.

The current DoD root and intermediate PKI certificates may be obtained in self-extracting zip files at http://iase.disa.mil/pki-pke (for NIPRNet).

On the MDM console, for the Workspace, in the "Knox certificate" group, verify that the DoD root and intermediate PKI certificates are listed.

On the Samsung Android device, do the following:
1. Open Settings.
2. Tap "Biometrics and security".
3. Tap "Other security settings".
4. Tap "View security certificates".
5. Verify the DoD root and intermediate certificates are listed under the "Work" list in the "User" tab.

If on the MDM console the DoD root and intermediate certificates are not listed in the "Knox certificate" group, or on the Samsung Android device "View security certificates" does not list the DoD root and intermediate certificates, this is a finding.

Check Content Reference

M

Target Key

3509

Comments