AIOS-12-004700 - Apple iOS must not allow backup to remote systems (enterprise books).

Information

Enterprise books may contain DoD-sensitive information. When enterprise books are backed up, they are vulnerable to attacks on the backup systems and media. Disabling the backup capability mitigates this risk. If such books are lost, accidentally deleted, or corrupted for any reason, they can be easily retrieved from the original source.

SFR ID: FMT_MOF_EXT.1.2 #40

NOTE: Nessus has not performed this check. Please review the benchmark to ensure target compliance.

Solution

Install a configuration profile to prevent backup of enterprise books that could contain DoD-sensitive information.

See Also

https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_Apple_iOS_12_V2R1_STIG.zip

Item Details

Category: CONFIGURATION MANAGEMENT

References: 800-53|CM-6b., CAT|II, CCI|CCI-000366, Rule-ID|SV-237254r642314_rule, STIG-ID|AIOS-12-004700, STIG-Legacy|SV-96507, STIG-Legacy|V-81793, Vuln-ID|V-237254

Plugin: MDM

Control ID: 405ad926afc0dfe677bda241e393f0bb3625eecb41ef0beac8394ba5ae14812b