← Back to Google Android 13 MDFPP 3.3 BYOAD Security Technical Implementation Guide

V-258465

CAT II (Medium)

The EMM detection/monitoring system must use continuous monitoring of enrolled Google Android 13 BYOAD.

Rule ID

SV-258465r929211_rule

STIG

Google Android 13 MDFPP 3.3 BYOAD Security Technical Implementation Guide

Version

V1R1

CCIs

CCI-000366

Discussion

DOD policy requires BYOAD devices with DOD data be managed by a DOD MDM server, MAM server, or VMI system. This ensures the device can be monitored for compliance with the approved security baseline and the work profile can be removed when the device is out of compliance, which protects DOD data from unauthorized exposure. Continuous monitoring must be used to ensure all noncompliance events will be seen by the detection system. Reference: DOD policy "Use of Non-Government Mobile Devices" (3.a.(3)iii). SFR ID: FMT_SMF_EXT.1.1 #47

Check Content

Verify the EMM detection/monitoring system is configured to use continuous monitoring of enrolled Google Android 13 BYOAD. The exact procedure will depend on the EMM system used at the site.

If the EMM detection/monitoring system is not configured to use continuous monitoring of enrolled Google Android 13 BYOAD, this is a finding.

Fix Text

Configure the EMM detection/monitoring system to use continuous monitoring of enrolled Google Android 13 BYOAD. The exact procedure will depend on the EMM system used at the site.