The Samsung Android 7 with Knox platform must implement the management setting Disable Nearby devices.

From Samsung Android OS 7 with Knox 2.x Security Technical Implementation Guide

Part of PP-MDF-991000

Associated with: CCI-000366

SV-91325r1_rule The Samsung Android 7 with Knox platform must implement the management setting Disable Nearby devices.

Vulnerability discussion

The Nearby devices feature allows the user to share files with other devices that are connected on the same WiFi access point using the DLNA technology. Even though the user must allow requests from other devices, this feature can potentially result in unauthorized access to and compromise of sensitive DoD files. Disabling this feature will mitigate this risk.SFR ID: FMT_SMF_EXT.1.1 #47

Check content

This validation procedure is performed on the Samsung Android 7 with Knox device. On the Samsung Android 7 with Knox device: 1. Open the device settings. 2. Select "More connection settings". 3. Select "Nearby devices". 4. Verify this is disabled. If setting is enabled and cannot be disabled, this is a finding. Note: This setting cannot be managed by the MDM administrator and is a User Based Enforcement (UBE) requirement.

Fix text

Configure the mobile operating system to disable Nearby devices.

Pro Tips

Lavender hyperlinks in small type off to the right (of CSS class id, if you view the page source) point to globally unique URIs for each document and item. Copy the link location and paste anywhere you need to talk unambiguously about these things.

You can obtain data about documents and items in other formats. Simply provide an HTTP header Accept: text/turtle or Accept: application/rdf+xml.

Powered by sagemincer