AIOS-13-013800 - Apple iOS/iPadOS must disable Allow USB drive access in Files access if the AO has not approved the use of DoD approved USB storage drives with iOS/iPadOS devices.

Information

Unauthorized use of USB storage drives could lead to the introduction of malware or unauthorized software into the DoD IT infrastructure and compromise of sensitive DoD information and systems.

SFR ID: FMT_SMF_EXT.1.1 #47

NOTE: Nessus has not performed this check. Please review the benchmark to ensure target compliance.

Solution

If the AO has not approved the use of USB drives to load files to Apple devices, install a configuration profile to disable 'Allow USB drive access in Files access'.

See Also

https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_Apple_iOS_iPadOS_13_V2R1_STIG.zip

Item Details

Category: ACCESS CONTROL, CONFIGURATION MANAGEMENT

References: 800-53|AC-20(2), 800-53|CM-6(1), 800-53|CM-6b., CAT|II, CCI|CCI-000097, CCI|CCI-000366, CCI|CCI-000370, Rule-ID|SV-219395r604137_rule, STIG-ID|AIOS-13-013800, STIG-Legacy|SV-106623, STIG-Legacy|V-97519, Vuln-ID|V-219395

Plugin: MDM

Control ID: 7abf25380ef29aff91987a57dd7b0e3b8d11cc9d2c048f299edeb752038059ac