Apple iOS/iPadOS 18 Security Technical Implementation Guide
Rules, Groups, and Values defined within the XCCDF Benchmark
-
PP-MDF-993300
Group -
iPhone and iPad must have the latest available iOS/iPadOS operating system installed.
Required security features are not available in earlier OS versions. In addition, earlier versions may have known vulnerabilities. SFRID: FMT_SMF.1.1 #47Rule High Severity -
PP-MDF-993300
Group -
Apple iOS/iPadOS 18 must implement the management setting: use SSL for Exchange ActiveSync.
Exchange email messages are a form of data in transit and thus are vulnerable to eavesdropping and man-in-the-middle attacks. Secure Sockets Layer (SSL), also referred to as Transport Layer Securit...Rule Medium Severity -
PP-MDF-993300
Group -
PP-MDF-993300
Group -
Apple iOS/iPadOS 18 must implement the management setting: treat AirDrop as an unmanaged destination.
AirDrop is a way to send contact information or photos to other users with AirDrop enabled. This feature enables a possible attack vector for adversaries to exploit. Once the attacker has gained ac...Rule Medium Severity -
PP-MDF-993300
Group -
PP-MDF-993300
Group -
PP-MDF-993300
Group
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.
Capacity
Modules