STIGQter: STIG Summary: Motorola Android 9.x COBO Security Technical Implementation Guide Version: 1 Release: 1 Benchmark Date: 14 Oct 2020:

The Motorola Android Pie must be configured to display the DoD advisory warning message at startup or each time the user unlocks the device.

DISA Rule

SV-230122r569707_rule

Vulnerability Number

V-230122

Group Title

GOOG-09-003400

Rule Version

MOTO-09-003400

Severity

CAT III

CCI(s)

• CCI-000048 - The information system displays an organization-defined system use notification message or banner before granting access to the system that provides privacy and security notices consistent with applicable federal laws, Executive Orders, directives, policies, regulations, standards, and guidance.

Weight

10

Fix Recommendation

Configure the DoD warning banner by either of the following methods (required text is found in the Vulnerability Discussion):

1. By placing the DoD warning banner text in the user agreement signed by each Motorola Android device user (preferred method).
2. By configuring the warning banner text on the MDM console and installing the banner on each managed mobile device.

On the MDM console:
Enable "Lock Screen Message" and enter the banner text.

Check Contents

The DoD warning banner can be displayed by either of the following methods (required text is found in the Vulnerability Discussion):

1. By placing the DoD warning banner text in the user agreement signed by each Motorola Android device user (preferred method).
2. By configuring the warning banner text on the MDM console and installing the banner on each managed mobile device.

Determine which method is used at the Motorola Android device site and follow the appropriate validation procedure below.

Validation Procedure for Method #1:
Review the signed user agreements for several Motorola Android device users and verify the agreement includes the required DoD warning banner text.

Validation Procedure for Method #2:
On the MDM console, ensure "Lock Screen Message" is set and the appropriate banner text is included.

If, for Method #1, the required warning banner text is not on all signed user agreements reviewed, or for Method #2, the MDM console device policy is not set to display a warning banner with the appropriate designated wording or on the Android Pie device, the device policy is not set to display a warning banner with the appropriate designated wording, this is a finding.

Vulnerability Number

V-230122

Documentable

False

Rule Version

MOTO-09-003400

Severity Override Guidance

The DoD warning banner can be displayed by either of the following methods (required text is found in the Vulnerability Discussion):

1. By placing the DoD warning banner text in the user agreement signed by each Motorola Android device user (preferred method).
2. By configuring the warning banner text on the MDM console and installing the banner on each managed mobile device.

Determine which method is used at the Motorola Android device site and follow the appropriate validation procedure below.

Validation Procedure for Method #1:
Review the signed user agreements for several Motorola Android device users and verify the agreement includes the required DoD warning banner text.

Validation Procedure for Method #2:
On the MDM console, ensure "Lock Screen Message" is set and the appropriate banner text is included.

If, for Method #1, the required warning banner text is not on all signed user agreements reviewed, or for Method #2, the MDM console device policy is not set to display a warning banner with the appropriate designated wording or on the Android Pie device, the device policy is not set to display a warning banner with the appropriate designated wording, this is a finding.

Check Content Reference

M

Target Key

5234

Comments