GOOG-16-007400 - Google Android 16 must be configured to disable developer modes.

Information

Developer modes expose features of the mobile operating system that are not available during standard operation. An adversary may leverage a vulnerability inherent in a developer mode to compromise the confidentiality, integrity, and availability of DOD sensitive information. Disabling developer modes mitigates this risk.

SFR ID: FMT_SMF.1.1 #26

Solution

Configure the Google Android 16 device to disable developer modes.

On the EMM console:

COBO:

1. Open 'Set user restrictions'.
2. Toggle 'Disallow debugging features' to 'ON'.

COPE:

1. Open 'Set user restrictions'.
2. Toggle 'Disallow debugging features' to 'ON'.
3. Open 'Set user restrictions on parent'.
4. Toggle 'Disallow debugging features' to 'ON'.

Configuration API: DISALLOW_DEBUGGING_FEATURES

See Also

https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_Google_Android_16_Y25M08_STIG.zip

Item Details

Category: CONFIGURATION MANAGEMENT

References: 800-53|CM-7a., CAT|II, CCI|CCI-000381, Rule-ID|SV-276759r1140069_rule, STIG-ID|GOOG-16-007400, Vuln-ID|V-276759

Plugin: MDM

Control ID: 0b89088dcad8ce528dae4937e3b56d988d0def91545edbcca34766a5a6f3dc39