Skip to content
Log In

Zebra Android 13 COPE Security Technical Implementation Guide

Rules, Groups, and Values defined within the XCCDF Benchmark

  • PP-MDF-993300

    Group
    Show

  • PP-MDF-993300

    Group
    Show

  • Android 13 devices must be configured to enable Common Criteria Mode (CC Mode).

    The CC Mode feature is a superset of other features and behavioral changes that are mandatory MDFPP requirements. If CC mode is not implemented, the device will not be operating in the NIAP-certifi...
    Rule Low Severity
    Show

  • PP-MDF-993300

    Group
    Show

  • Zebra Android 13 must be configured to disable all data signaling over [assignment: list of externally accessible hardware ports (for example, USB)].

    If a user is able to configure the security setting, the user could inadvertently or maliciously set it to a value that poses unacceptable risk to DOD information systems. An adversary could exploi...
    Rule Medium Severity
    Show

  • PP-MDF-333350

    Group
    Show

  • The Zebra Android 13 must allow only the administrator (EMM) to install/remove DOD root and intermediate PKI certificates.

    DOD root and intermediate PKI certificates are used to verify the authenticity of PKI certificates of users and web services. If the user is allowed to remove root and intermediate certificates, th...
    Rule Medium Severity
    Show

  • Zebra Android 13 must be configured to enforce a minimum password length of six characters.

    Password strength is a measure of the effectiveness of a password in resisting guessing and brute force attacks. The ability to crack a password is a function of how many attempts an adversary is p...
    Rule Medium Severity
    Show

  • Zebra Android 13 must be configured to lock the display after 15 minutes (or less) of inactivity.

    The screen lock timeout must be set to a value that helps protect the device from unauthorized access. Having a too-long timeout would increase the window of opportunity for adversaries who gain ph...
    Rule Medium Severity
    Show

  • Zebra Android 13 must be configured to enforce an application installation policy by specifying an application allowlist that restricts applications by the following characteristics: [selection: list of digital signatures, cryptographic hash values, names, application version].

    The application allowlist, in addition to controlling the installation of applications on the MD, must control user access/execution of all core and preinstalled applications, or the MD must provid...
    Rule Medium Severity
    Show

Node 2

siemur/test-space

The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.

Capacity
Modules