STIGQter STIGQter: STIG Summary: Samsung Android 11 with Knox 3.x AE Security Technical Implementation Guide Version: 1 Release: 1 Benchmark Date: 20 Nov 2020:

Samsung Android must be configured to enable authentication of personal hotspot connections to the device using a pre-shared key.

DISA Rule

SV-230991r607691_rule

Vulnerability Number

V-230991

Group Title

PP-MDF-301240

Rule Version

KNOX-11-008100

Severity

CAT II

CCI(s)

Weight

10

Fix Recommendation

Configure Samsung Android to enable authentication of personal hotspot connections to the device using a pre-shared key.

On the management tool, in the device Wi-Fi section, set "Unsecured hotspot" to "Disallow".

Check Contents

Review Samsung Android configuration settings to determine if the mobile device has enabled authentication of personal hotspot connections to the device using a pre-shared key.

This validation procedure is performed on both the management tool Administration Console and the Samsung Android device.

On the management tool, in the device Wi-Fi section, verify that "Unsecured hotspot" is set to "Disallow".

On the Samsung Android device:
1. Open Settings >> Connections >> Mobile Hotspot and Tethering >> Mobile Hotspot >> Edit.
2. Tap option "Open" in the "Security" drop-down box.
3. Verify that "Save" is disabled.

If on the management tool "Unsecured hotspot" is not set to "Disallow", or on the Samsung Android device "Open" can be selected in the "Security" drop-down box and the configuration can be saved, this is a finding.

Vulnerability Number

V-230991

Documentable

False

Rule Version

KNOX-11-008100

Severity Override Guidance

Review Samsung Android configuration settings to determine if the mobile device has enabled authentication of personal hotspot connections to the device using a pre-shared key.

This validation procedure is performed on both the management tool Administration Console and the Samsung Android device.

On the management tool, in the device Wi-Fi section, verify that "Unsecured hotspot" is set to "Disallow".

On the Samsung Android device:
1. Open Settings >> Connections >> Mobile Hotspot and Tethering >> Mobile Hotspot >> Edit.
2. Tap option "Open" in the "Security" drop-down box.
3. Verify that "Save" is disabled.

If on the management tool "Unsecured hotspot" is not set to "Disallow", or on the Samsung Android device "Open" can be selected in the "Security" drop-down box and the configuration can be saved, this is a finding.

Check Content Reference

M

Target Key

5247

Comments