GOOG-12-008400 - Google Android 12 must be configured to disable USB mass storage mode.

Information

USB mass storage mode enables the transfer of data and software from one device to another. This software can include malware. When USB mass storage is enabled on a mobile device, it becomes a potential vector for malware and unauthorized data exfiltration. Prohibiting USB mass storage mode mitigates this risk.

SFR ID: FMT_SMF_EXT.1.1 #39

Solution

Configure the Google Android 12 device to disable USB mass storage mode.

On the EMM console:

COBO:

1. Open 'User restrictions'.
2. Open 'Set user restrictions'.
3. Toggle 'Disallow USB file transfer' to ON.

COPE:

1. Open 'User restrictions'.
2. Open 'Set user restrictions on parent'.
3. Toggle 'Disallow USB file transfer' to ON.

See Also

https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_Google_Android_12_STIG.zip

Item Details

Category: SYSTEM AND COMMUNICATIONS PROTECTION

References: 800-53|SC-41, CAT|II, CCI|CCI-002546, Rule-ID|SV-250432r802812_rule, STIG-ID|GOOG-12-008400, Vuln-ID|V-250432

Plugin: MDM

Control ID: b37675aba7f0e7c876b587e7f0cb1dce75737f549bb3987445e2d321ecf44156