The iOS/iPadOS 16 BYOAD must be configured to protect users' privacy, personal information, and applications.

Overview

Finding ID	Version	Rule ID	IA Controls	Severity
V-257095	AIOS-16-800120	SV-257095r904030_rule		Low

Description

A key construct of a BYOAD is that user personal information and data are protected from exposure to the enterprise. Reference: DOD policy "Use of Non-Government Mobile Devices". 3.b.(4), 3.b.(5). SFR ID: FMT_SMF_EXT.1.1 #47

STIG	Date
Apple iOS/iPad OS 16 MDFPP 3.3 BYOAD Security Technical Implementation Guide	2023-08-14

Details

Check Text (C-60780r904028_chk)

Verify the EMM system has been configured to limit access to unmanaged data and apps on the iOS/iPadOS 16 BYOAD to protect users' privacy, personal information, and applications.

The exact procedure will depend on the EMM system used at the site.

If the BYOAD has not been configured to limit access to unmanaged data and apps on the iOS/iPadOS 16 BYOAD, this is a finding.

Fix Text (F-60721r904029_fix)

Configure the EMM system to limit access to unmanaged data and apps on the iOS/iPadOS 16 BYOAD to protect users' privacy, personal information, and applications.

The exact procedure will depend on the EMM system used at the site.