Apple iOS/iPadOS 17 must not allow backup to remote systems (iCloud document and data synchronization).
An XCCDF Rule
Description
If a user is able to configure the security setting, the user could inadvertently or maliciously set it to a value that poses unacceptable risk to DOD information systems. An adversary could exploit vulnerabilities created by the weaker configuration to compromise DOD sensitive information. SFR ID: FMT_MOF_EXT.1.2 #40
- ID
- SV-259187r958524_rule
- Version
- AIOS-17-003200
- Severity
- Medium
- References
- Updated
Remediation Templates
A Manual Procedure
Install a configuration profile to disable iCloud documents and data.
This requirement will become "Supervised only" in a future iOS/iPadOS release.