STIGQter STIGQter: STIG Summary: Samsung Android 11 with Knox 3.x Legacy Security Technical Implementation Guide Version: 1 Release: 1 Benchmark Date: 20 Nov 2020:

The Samsung Android device must have the latest available Samsung Android operating system (OS) installed.

DISA Rule

SV-231052r608683_rule

Vulnerability Number

V-231052

Group Title

PP-MDF-991000

Rule Version

KNOX-11-023400

Severity

CAT I

CCI(s)

Weight

10

Fix Recommendation

Install the latest released version of Samsung Android OS on all managed Samsung devices.

NOTE: In most cases, OS updates are released by the wireless carrier (for example, Sprint, T-Mobile, Verizon Wireless, and ATT).

Check Contents

Review Samsung Android device configuration settings to confirm that the most recently released version of Samsung Android is installed.

This procedure is performed on both the management tool and the Samsung Android device.

In the management tool management console, review the version of Samsung Android installed on a sample of managed devices. This procedure will vary depending on the management tool product. See the notes below to determine the latest available OS version.

On the Samsung Android device, to see the installed OS version:
1. Open Settings.
2. Tap "About phone".
3. Tap "Software information".

If the installed version of Android OS on any reviewed Samsung devices is not the latest released by the wireless carrier, this is a finding.

NOTE: Some wireless carriers list the version of the latest Android OS release by mobile device model online:

ATT: https://www.att.com/devicehowto/dsm.html#!/popular/make/Samsung

T-Mobile: https://support.t-mobile.com/docs/DOC-34510
Verizon Wireless: https://www.verizonwireless.com/support/software-updates/

Google Android OS patch website: https://source.android.com/security/bulletin/

Samsung Android OS patch website: https://security.samsungmobile.com/securityUpdate.smsb

Vulnerability Number

V-231052

Documentable

False

Rule Version

KNOX-11-023400

Severity Override Guidance

Review Samsung Android device configuration settings to confirm that the most recently released version of Samsung Android is installed.

This procedure is performed on both the management tool and the Samsung Android device.

In the management tool management console, review the version of Samsung Android installed on a sample of managed devices. This procedure will vary depending on the management tool product. See the notes below to determine the latest available OS version.

On the Samsung Android device, to see the installed OS version:
1. Open Settings.
2. Tap "About phone".
3. Tap "Software information".

If the installed version of Android OS on any reviewed Samsung devices is not the latest released by the wireless carrier, this is a finding.

NOTE: Some wireless carriers list the version of the latest Android OS release by mobile device model online:

ATT: https://www.att.com/devicehowto/dsm.html#!/popular/make/Samsung

T-Mobile: https://support.t-mobile.com/docs/DOC-34510
Verizon Wireless: https://www.verizonwireless.com/support/software-updates/

Google Android OS patch website: https://source.android.com/security/bulletin/

Samsung Android OS patch website: https://security.samsungmobile.com/securityUpdate.smsb

Check Content Reference

M

Target Key

5248

Comments