From LG Android 5.x Interim Security Configuration Guide
Part of PP-MDF-991000
Associated with: CCI-000366 CCI-001028
Password complexity or strength refers to how difficult it is to determine a password using a dictionary or brute-force attack. Passwords with sequential or repeating numbers or alphabetic characters (e.g., 456, 987, 222, abc, ddd) are considered easier to crack than random patterns. Therefore, disallowing sequential or repeating numbers or alphabetic characters makes it more difficult for an adversary to discover the password.
This validation procedure is performed on both the MDM Administration Console and the LG Android device. Check whether the appropriate setting is configured on the MDM Administration Console: 1. Ask the MDM administrator to display the "Max Sequential Characters" in the MDM console. 2. Verify the setting is the same or less than the required length. On The LG Android 5.0 platform device: 1. Unlock the device 2. Navigate to the password entry screen: Settings >> Lockscreen >> Select screen lock >> Password 3. Attempt to enter a password with more than two sequential characters (letters or numbers). Determine if the new password is allowed. If the configured values of the “Max Sequential Character” setting are greater than the required length, or if device accepts a password that contains sequential characters of length greater than the required length, this is a finding.
Configure the mobile device to enforce a sequential password length of no more than 2 characters. On the MDM Administration Console, set the "Max Sequential Characters" value to 2.
Lavender hyperlinks in small type off to the right (of CSS
class id, if you view the page source) point to
globally unique URIs for each document and item. Copy the
link location and paste anywhere you need to talk
unambiguously about these things.
You can obtain data about documents and items in other
formats. Simply provide an HTTP header Accept:
text/turtle or
Accept: application/rdf+xml.
Powered by sagemincer