From Samsung Android OS 6 (with KNOX 2.x) Security Technical Implementation Guide
Part of PP-MDF-201006
Associated with: CCI-000366 CCI-001806
Forcing all applications to be installed from authorized application repositories can prevent unauthorized and malicious applications from being installed and executed on mobile devices. Allowing such installations and executions could cause a compromise of DoD data accessible by these unauthorized/malicious applications.
Configuring an application installation policy on Samsung KNOX for Android by specifying an application repository involves two steps: 1. Disabling Google Play 2. Disabling unknown application sources This validation procedure covers the second of these steps. It is performed on both the MDM Administration Console and the Samsung KNOX for Android device. On the MDM Administration Console: 1. Ask the MDM administrator to display the "Allow Unknown Sources" settings in the "Android Restrictions" rule. 2. Verify it is disabled. On the Samsung KNOX for Android device: 1. Open the device settings. 2. Select "Lock screen and security". 3. Attempt to enable "Unknown sources". 4. Verify it cannot be enabled. If the "Allow Unknown Sources" setting is not disabled, or if a user can successfully enable "Unknown sources" on the device, this is a finding.
Configure the mobile operating system to disable unauthorized application repositories. Configure the mobile operating system to disable application installations from unknown sources. On the MDM Administration Console, disable "Allow Unknown Sources" in the "Android Restrictions" rule.
Lavender hyperlinks in small type off to the right (of CSS
class id, if you view the page source) point to
globally unique URIs for each document and item. Copy the
link location and paste anywhere you need to talk
unambiguously about these things.
You can obtain data about documents and items in other
formats. Simply provide an HTTP header Accept:
text/turtle or
Accept: application/rdf+xml.
Powered by sagemincer