AIOS-13-004700 - Apple iOS/iPadOS must not allow backup to remote systems (enterprise books).

Information

Enterprise books may contain DoD-sensitive information. When Enterprise books are vulnerable to attacks on the backup systems and media when backed up. Disabling the backup capability mitigates this risk. Books which are lost, accidentally deleted, or corrupted for any reason, can be easily retrieved from the original source.

SFR ID: FMT_MOF_EXT.1.2 #40

NOTE: Nessus has not performed this check. Please review the benchmark to ensure target compliance.

Solution

Install a configuration profile to prevent backup of enterprise books that could contain DoD-sensitive information.

See Also

https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_Apple_iOS_iPadOS_13_V2R1_STIG.zip

Item Details

Category: CONFIGURATION MANAGEMENT

References: 800-53|CM-6b., CAT|II, CCI|CCI-000366, Rule-ID|SV-219364r604137_rule, STIG-ID|AIOS-13-004700, STIG-Legacy|SV-106559, STIG-Legacy|V-97455, Vuln-ID|V-219364

Plugin: MDM

Control ID: b4848984f061c3cd30b1ea22d955371cbd2750b028ea793c9596384eb0eb9d5a