Big Sur - Enforce Apple Mobile File Integrity

Information

Apple Mobile File Integrity (AMFI) is a macOS kernel module that enforces the code-signing validation within Gatekeeper and library validation. AMFI checks the signatures of every app that is run.

NOTE: AMFI is enabled by default on macOS systems.

Solution

[source,bash]
----
/usr/sbin/nvram boot-args=""
----

See Also

https://github.com/usnistgov/macos_security

Item Details

Category: SYSTEM AND INFORMATION INTEGRITY

References: 800-53|SI-3, 800-53|SI-7(1), 800-53|SI-7(9), CCE|CCE-85461-2

Plugin: Unix

Control ID: c3dcba6e1438a97a71d0faea5520ebb7eb92eb78b810b65365b80eb483003c24