GOOG-16-012400 - Google Android 16 must allow only the administrator (MDM) to perform the following management function: Disable Phone Hub - MDM to perform the following management function: Disable Phone Hub.

Information

It may be possible to transfer work profile data on a DOD Android device to an unauthorized Chromebook if the user has the same Google Account set up on the Chromebook and in the work profile on the Android device. This may result in the exposure of sensitive DOD data.

SFR ID: FMT_MOF_EXT.1.2 #47

NOTE: Nessus has not performed this check. Please review the benchmark to ensure target compliance.

Solution

Configure the Google Android 16 device to disable the nearby notification streaming policy to disable Phone Hub.

On the EMM console:

COBO and COPE:

1. Open 'Nearby notification streaming policy'.
2. Set 'Nearby notification streaming policy' to 'Disabled'.
3. Open 'Nearby app streaming policy'.
4. Set 'Nearby app streaming policy' to 'Disabled'.

Configuration API: setNearbyNotificationStreamingPolicy to NEARBY_STREAMING_DISABLED

Item Details

Audit Name: AirWatch - DISA Google Android 16 COBO STIG v1r1

Category: SYSTEM AND COMMUNICATIONS PROTECTION

Plugin: MDM

Control ID: ae8704a63b8bcde7ef1e7fa6da881a27909bdb68ae579ad779a3b4f5d11c9f14

Detections

Analytics

GOOG-16-012400 - Google Android 16 must allow only the administrator (MDM) to perform the following management function: Disable Phone Hub - MDM to perform the following management function: Disable Phone Hub.

Information

Solution

See Also

Item Details