AIOS-17-013300 - Apple iOS/iPadOS 17 must disable 'Allow USB drive access in Files app' if the authorizing official (AO) has not approved the use of DOD-approved USB storage drives with iOS/iPadOS devices - Allow USB drive access in Files app if the Authorizing Official (AO) has not approved the use of DoD-approved USB storage drives with iOS/iPadOS devices.

Information

Unauthorized use of USB storage drives could lead to the introduction of malware or unauthorized software into the DOD IT infrastructure and compromise of sensitive DOD information and systems.

SFR ID: FMT_SMF_EXT.1.1 #47

NOTE: Nessus has not performed this check. Please review the benchmark to ensure target compliance.

Solution

If the AO has not approved the use of USB drives to load files to Apple devices, install a configuration profile to disable 'Allow USB drive access in Files app'.

See Also

https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_Apple_iOS-iPadOS_17_V2R1_STIG.zip

Item Details

Category: ACCESS CONTROL, CONFIGURATION MANAGEMENT

References: 800-53|AC-20(2), 800-53|CM-6b., CAT|II, CCI|CCI-000097, CCI|CCI-000366, Rule-ID|SV-259193r958524_rule, STIG-ID|AIOS-17-013300, Vuln-ID|V-259193

Plugin: MDM

Control ID: eb3527e6a01e01191b4ed0a69c31b51e3e5ed0ddf02e3cd14a4f6fef55596552