Apple iOS/iPadOS 15 must disable copy/paste of data from managed to unmanaged applications.
An XCCDF Rule
Description
<VulnDiscussion>If a user is able to configure the security setting, the user could inadvertently or maliciously set it to a value that poses unacceptable risk to DoD information systems. An adversary could exploit vulnerabilities created by the weaker configuration to compromise DoD sensitive information. Translation information could contain sensitive DoD information and therefore should not leave the DoD control. SFR ID: FMT_SMF_EXT.1.1 #47</VulnDiscussion><FalsePositives></FalsePositives><FalseNegatives></FalseNegatives><Documentable>false</Documentable><Mitigations></Mitigations><SeverityOverrideGuidance></SeverityOverrideGuidance><PotentialImpacts></PotentialImpacts><ThirdPartyTools></ThirdPartyTools><MitigationControl></MitigationControl><Responsibility></Responsibility><IAControls></IAControls>
- ID
- SV-250981r802034_rule
- Severity
- Medium
- References
- Updated
Remediation - Manual Procedure
Configure the Apple iOS configuration profile to disable copy/paste of data from managed to unmanaged applications.
The procedure for implementing this control will vary depending on the MDM/EMM used by the mobile service provider.
In the MDM console, set "Require managed pasteboard" to "True".