2.1.1 Turn off Bluetooth, if no paired devices exist

Information

Bluetooth devices use a wireless communications system that replaces the cables used by other peripherals to connect to a system. It is by design a peer-to-peer network technology and typically lacks centralized administration and security enforcement infrastructure.

Rationale:

Bluetooth is particularly susceptible to a diverse set of security vulnerabilities involving identity detection, location tracking, denial of service, unintended control and access of data and voice channels, and unauthorized device control and data access.

Impact:

There have been many Bluetooth exploits , while Bluetooth can be hardened it does create a local wireless network that can be attacked to compromise both devices and information. Apple has emphasized the ease of use in Bluetooth devices so it is generally expected that Bluetooth will be used. Turning off Bluetooth with this control will also disable the Bluetooth sharing capability that is more strongly recommended against in control 2.4.7.

Solution

Perform the following to disable Bluetooth:
Graphical Method:

Open System Preferences

Select Bluetooth

Select Turn Bluetooth Off

Terminal Method:
Run the following command to disable Bluetooth

$ sudo defaults write /Library/Preferences/com.apple.Bluetooth ControllerPowerState -int 0

$ sudo killall -HUP blued

Note: When using the terminal method to disable Bluetooth, the prescribed state will not be properly show in the GUI. Use the terminal method of the audit to verify if Bluetooth is enabled/disabled.

See Also

https://workbench.cisecurity.org/files/3013

Item Details

Category: CONFIGURATION MANAGEMENT

References: 800-53|CM-7b.

Plugin: Unix

Control ID: f45b126a4cf1faede90f80b33d064311b3d6e85479c064cd5d4d1db06eb7fb76