STIGQter STIGQter: STIG Summary: Samsung Android OS 5 with Knox 2.0 Security Technical Implementation Guide Version: 1 Release: 4 Benchmark Date: 26 Apr 2019: The Samsung Knox for Android platform must implement the management setting: Enable Certificate Revocation Status Check.

DISA Rule

SV-75705r1_rule

Vulnerability Number

V-61225

Group Title

PP-MDF-991000

Rule Version

KNOX-35-028500

Severity

CAT II

CCI(s)

Weight

10

Fix Recommendation

Configure the operating system to configure certification revocation status checking (CRL).

On the MDM Administration Console, "Enable Certificate Revocation Status (CRL) Check" settings for all applications in the "Android Restrictions" rule.

Check Contents

This validation procedure is performed on the MDM Administration Console.

Check whether the appropriate setting is configured on the MDM Administration Console:
1. Ask the MDM administrator to display the "Enable Certificate Revocation Status (CRL) Check" settings in the "Android Restrictions" rule.
2. Verify the value is enabled and configured for all applications.

If the setting is disabled, this is a finding.

Vulnerability Number

V-61225

Documentable

False

Rule Version

KNOX-35-028500

Severity Override Guidance

This validation procedure is performed on the MDM Administration Console.

Check whether the appropriate setting is configured on the MDM Administration Console:
1. Ask the MDM administrator to display the "Enable Certificate Revocation Status (CRL) Check" settings in the "Android Restrictions" rule.
2. Verify the value is enabled and configured for all applications.

If the setting is disabled, this is a finding.

Check Content Reference

M

Target Key

2889

Comments