GOOG-12-007400 - Google Android 12 must be configured to disable developer modes.

Information

Developer modes expose features of the mobile operating system (MOS) that are not available during standard operation. An adversary may leverage a vulnerability inherent in a developer mode to compromise the confidentiality, integrity, and availability of DoD sensitive information. Disabling developer modes mitigates this risk.

SFR ID: FMT_SMF_EXT.1.1 #26

Solution

Configure the Google Android 12 device to disable developer modes.

On the EMM Console:

COBO:

1. Open 'Set user restrictions'.
2. Toggle 'Disallow debugging features' to ON.

COPE:

1. Open 'Set user restrictions'.
2. Toggle 'Disallow debugging features' to ON.
3. Open 'Set user restrictions on parent'.
4. Toggle 'Disallow debugging features' to ON.

See Also

https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_Google_Android_12_STIG.zip

Item Details

Category: CONFIGURATION MANAGEMENT

References: 800-53|CM-7a., CAT|II, CCI|CCI-000381, Rule-ID|SV-250429r802806_rule, STIG-ID|GOOG-12-007400, Vuln-ID|V-250429

Plugin: MDM

Control ID: 176cbd6c483813912d58995027d363b219c6cedcebd98eeb2d8eb4badae3344a