STIGQter STIGQter: STIG Summary: Samsung Android (with Knox 2.x) STIG Version: 1 Release: 4 Benchmark Date: 22 Apr 2016: The Samsung Knox for Android platform must be configured to implement the management setting: disable NFC.

DISA Rule

SV-70359r1_rule

Vulnerability Number

V-56105

Group Title

PP-MDF-991000

Rule Version

KNOX-35-023100

Severity

CAT II

CCI(s)

Weight

10

Fix Recommendation

Configure the mobile operating system to disable NFC.

On the MDM Administration Console, disable the "Allow NFC" setting in the "Android Restrictions" rule.

Check Contents

This validation procedure is performed on both the MDM Administration Console and the Samsung Knox for Android device.

Check whether the appropriate setting is configured on the MDM Administration Console:
1. Ask the MDM administrator to display the "Allow NFC" setting in the "Android Restrictions" rule.
2. Verify the setting is disabled.

On the Samsung Knox for Android device:
1. Open device settings.
2. Select "NFC".
3. Verify the setting is disabled.

If the "Allow NFC" configuration in the MDM console is enabled, or if the setting is enabled on the device, this is a finding.

Vulnerability Number

V-56105

Documentable

False

Rule Version

KNOX-35-023100

Severity Override Guidance

This validation procedure is performed on both the MDM Administration Console and the Samsung Knox for Android device.

Check whether the appropriate setting is configured on the MDM Administration Console:
1. Ask the MDM administrator to display the "Allow NFC" setting in the "Android Restrictions" rule.
2. Verify the setting is disabled.

On the Samsung Knox for Android device:
1. Open device settings.
2. Select "NFC".
3. Verify the setting is disabled.

If the "Allow NFC" configuration in the MDM console is enabled, or if the setting is enabled on the device, this is a finding.

Check Content Reference

M

Target Key

2699

Comments