AIOS-18-015100 - Apple iOS/iPadOS 18 must delete eSIM content when the device is erased.

Information

An eSIM may contain sensitive DOD data and must be wiped of data when the mobile device is wiped to protect sensitive data from exposure.

SFRID: FMT_MOF_EXT.1.2 #47

NOTE: Nessus has not performed this check. Please review the benchmark to ensure target compliance.

Solution

Install a configuration profile to delete eSIM content when the device is erased.

See Also

https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_Apple_iOS-iPadOS_18_V1R1_STIG.zip

Item Details

Category: MEDIA PROTECTION

References: 800-53|MP-6(3), CAT|II, CCI|CCI-001033, Rule-ID|SV-268067r1031247_rule, STIG-ID|AIOS-18-015100, Vuln-ID|V-268067

Plugin: MDM

Control ID: 8040ba3dd479b82e5161ebb8984c260aaf6b774982c680ec906a5935149de993