The iOS/iPadOS 17 BYOAD must be configured to protect users' privacy, personal information, and applications.

Overview

Finding ID	Version	Rule ID	IA Controls	Severity
V-259752	AIOS-17-800120	SV-259752r943581_rule		Low

Description

A key construct of a BYOAD is that user personal information and data are protected from exposure to the enterprise. Reference: DOD policy "Use of Non-Government Mobile Devices". 3.b.(4), 3.b.(5). SFR ID: FMT_SMF_EXT.1.1 #47

STIG	Date
Apple iOS/iPadOS 17 BYOAD Security Technical Implementation Guide	2024-01-31

Details

Check Text (C-63488r943579_chk)

Verify the EMM system has been configured to limit access to unmanaged data and apps on the iOS/iPadOS 17 BYOAD to protect users' privacy, personal information, and applications.

The exact procedure will depend on the EMM system used at the site.

If the BYOAD has not been configured to limit access to unmanaged data and apps on the iOS/iPadOS 17 BYOAD, this is a finding.

Fix Text (F-63395r943580_fix)

Configure the EMM system to limit access to unmanaged data and apps on the iOS/iPadOS 17 BYOAD to protect users' privacy, personal information, and applications.

The exact procedure will depend on the EMM system used at the site.