STIGQter: STIG Summary: Apple iOS/iPadOS 14 Security Technical Implementation Guide Version: 1 Release: 2 Benchmark Date: 23 Apr 2021:

The mobile operating system must be configured to display the DoD advisory warning message at start-up or each time the user unlocks the device.

DISA Rule

SV-228739r619923_rule

Vulnerability Number

V-228739

Group Title

PP-MDF-301200

Rule Version

AIOS-14-003300

Severity

CAT III

CCI(s)

• CCI-000048 - The information system displays an organization-defined system use notification message or banner before granting access to the system that provides privacy and security notices consistent with applicable federal laws, Executive Orders, directives, policies, regulations, standards, and guidance.

Weight

10

Fix Recommendation

Configure the DoD warning banner by either of the following methods (required text is found in the Vulnerability Discussion):

1. By placing the DoD warning banner text in the user agreement signed by each iOS device user (preferred method).
2. By creating a background picture with the relevant information and configuring that picture as the background for the lock screen via the Apple iOS/iPadOS management tool.

Check Contents

The DoD warning banner can be displayed by either of the following methods (required text is found in the Vulnerability Discussion):

1. By placing the DoD warning banner text in the user agreement signed by each iPhone and iPad user (preferred method).
2. By creating a background picture with the relevant information and configuring that picture as the background for the lock screen via the Apple iOS/iPadOS management tool (only available for supervised devices).

Determine which method is used at the iOS device site and follow the appropriate validation procedure below.

Validation Procedure for Method #1:
Review the signed user agreements for several iOS device users and verify the agreement includes the required DoD warning banner text.

Validation Procedure for Method #2:
- In the Apple iOS/iPadOS management tool, verify a picture of the DoD warning banner text has been configured as the background for the lock screen.
- On the iOS device, verify a picture of the DoD warning banner text is shown as the background for the locked screen.

If, for Method #1, the required warning banner text is not on all signed user agreements reviewed, or for Method #2, the DoD warning banner text is not set as the locked screen background, this is a finding.

Vulnerability Number

V-228739

Documentable

False

Rule Version

AIOS-14-003300

Severity Override Guidance

The DoD warning banner can be displayed by either of the following methods (required text is found in the Vulnerability Discussion):

1. By placing the DoD warning banner text in the user agreement signed by each iPhone and iPad user (preferred method).
2. By creating a background picture with the relevant information and configuring that picture as the background for the lock screen via the Apple iOS/iPadOS management tool (only available for supervised devices).

Determine which method is used at the iOS device site and follow the appropriate validation procedure below.

Validation Procedure for Method #1:
Review the signed user agreements for several iOS device users and verify the agreement includes the required DoD warning banner text.

Validation Procedure for Method #2:
- In the Apple iOS/iPadOS management tool, verify a picture of the DoD warning banner text has been configured as the background for the lock screen.
- On the iOS device, verify a picture of the DoD warning banner text is shown as the background for the locked screen.

If, for Method #1, the required warning banner text is not on all signed user agreements reviewed, or for Method #2, the DoD warning banner text is not set as the locked screen background, this is a finding.

Check Content Reference

M

Target Key

4231

Comments