Google Android 15 must be configured to disable all data signaling over [assignment: list of externally accessible hardware ports (for example, USB)].
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
| V-267560 | GOOG-15-012200 | SV-267560r1033080_rule | Medium |
| Description |
| If a user is able to configure the security setting, the user could inadvertently or maliciously set it to a value that poses unacceptable risk to DOD information systems. An adversary could exploit vulnerabilities created by the weaker configuration to compromise DOD sensitive information. SFRID: FMT_MOF_EXT.1.2 #24 |
| STIG | Date |
| Google Android 15 COPE Security Technical Implementation Guide | 2024-12-05 |
Details
| Check Text (C-71484r1033078_chk) |
| Review the device configuration to confirm that the USB port is disabled except for charging the device. On the EMM console: 1. Open "Set user restrictions". 2. Verify "Disallow USB file transfer" is set to "ON". If on EMM console the USB port is not disabled ("Disallow USB file transfer" is set to "ON"), this is a finding. |
| Fix Text (F-71387r1033079_fix) |
| Configure Google Android 15 device to disable the USB port (except for charging the device). COPE and COBO: On the EMM console: 1. Open "Set user restrictions". 2. Toggle "Disallow USB file transfer" to "ON". |