Skip to content
Catalogs
XCCDF
Samsung Android OS 14 with Knox 3.x COBO Security Technical Implementation Guide
PP-MDF-333260
Samsung Android must be configured to enable authentication of personal hotspot connections to the device using a preshared key.
- Disallow config tethering.
Samsung Android must be configured to enable authentication of personal hotspot connections to the device using a preshared key.
- Disallow config tethering. An XCCDF Rule
Samsung Android must be configured to enable authentication of personal hotspot connections to the device using a preshared key.
- Disallow config tethering.
Medium Severity
<VulnDiscussion>If no authentication is required to establish personal hotspot connections (Wi-Fi and Bluetooth), an adversary may be able to use that device to perform attacks on other devices or networks without detection. A sophisticated adversary may also be able to exploit unknown system vulnerabilities to access information and computing resources on the device. Requiring authentication to establish personal hotspot connections mitigates this risk.
Application note: If hotspot functionality is permitted, it must be authenticated via a preshared key. There is no requirement to enable hotspot functionality, and it is recommended this functionality be disabled by default.
SFR ID: FMT_SMF_EXT.1.1 #41</VulnDiscussion><FalsePositives></FalsePositives><FalseNegatives></FalseNegatives><Documentable>false</Documentable><Mitigations></Mitigations><SeverityOverrideGuidance></SeverityOverrideGuidance><PotentialImpacts></PotentialImpacts><ThirdPartyTools></ThirdPartyTools><MitigationControl></MitigationControl><Responsibility></Responsibility><IAControls></IAControls>