AIOS-13-011200 - Apple iOS/iPadOS must implement the management setting: Disable Allow MailDrop.

Information

MailDrop allows users to send large attachments up to 5 GB in size via iCloud. Storing data with a non-DoD cloud provider may leave the data vulnerable to breach. Disabling non-DoD cloud services mitigates this risk.

SFR ID: FMT_SMF_EXT.1.1 #47

NOTE: Nessus has not performed this check. Please review the benchmark to ensure target compliance.

Solution

Configure the Apple iOS/iPadOS configuration profile to disable 'Allow MailDrop'.

See Also

https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_Apple_iOS_iPadOS_13_V2R1_STIG.zip

Item Details

Category: ACCESS CONTROL, CONFIGURATION MANAGEMENT

References: 800-53|AC-17(1), 800-53|CM-6(1), 800-53|CM-6b., CAT|II, CCI|CCI-000366, CCI|CCI-000370, CCI|CCI-002314, Rule-ID|SV-219373r604137_rule, STIG-ID|AIOS-13-011200, STIG-Legacy|SV-106579, STIG-Legacy|V-97475, Vuln-ID|V-219373

Plugin: MDM

Control ID: 5fac9f159b3b935e5abef700f202108a4ede7098c8c59491e4e3093ae18f2cee