Skip to content

Google Android 13 must be configured to enforce an application installation policy by specifying one or more authorized application repositories.

An XCCDF Rule

Description

<VulnDiscussion>Forcing all applications to be installed from authorized application repositories can prevent unauthorized and malicious applications from being installed and executed on mobile devices. Allowing such installations and executions could cause a compromise of DOD data accessible by these unauthorized/malicious applications. SFR ID: FMT_SMF_EXT.1.1 #8a</VulnDiscussion><FalsePositives></FalsePositives><FalseNegatives></FalseNegatives><Documentable>false</Documentable><Mitigations></Mitigations><SeverityOverrideGuidance></SeverityOverrideGuidance><PotentialImpacts></PotentialImpacts><ThirdPartyTools></ThirdPartyTools><MitigationControl></MitigationControl><Responsibility></Responsibility><IAControls></IAControls>

ID
SV-258480r929256_rule
Severity
Medium
References
Updated



Remediation - Manual Procedure

Configure the Google Android 13 device to disable unauthorized application repositories.

On the EMM console:

1. Open "Set user restrictions".
2. Toggle "Disallow install unknown sources" to "ON".