U.S. flag   An official website of the United States government
Dot gov

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Https

Secure .gov websites use HTTPS
A lock (Dot gov) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.

National Checklist Program

National Checklist Program

NCP

  1. Checklist Repository

Zebra Android 11 COBO STIG Ver 1, Rel 3 Checklist Details (Checklist Revisions)

Supporting Resources:

Target:

Target CPE Name
Google Android 11.0 cpe:/o:google:android:11.0 (View CVEs)

Checklist Highlights

Checklist Name:
Zebra Android 11 COBO STIG
Checklist ID:
1025
Version:
Ver 1, Rel 3
Type:
Compliance
Review Status:
Final
Authority:
Governmental Authority: Defense Information Systems Agency
Original Publication Date:
03/30/2022

Checklist Summary:

The Zebra Android 11 Security Technical Implementation Guide (STIG) provides the technical security policies, requirements, and implementation details for applying security concepts to Zebra Technologies handheld devices running Android 11 that process, store, or transmit unclassified data marked as “Controlled Unclassified Information (CUI)” or below. This STIG leverages the Google Android 11 STIG. All requirements in this STIG are based on the Google Android 11 STIG, with several changes specific to Zebra Technologies.

Checklist Role:

  • Operating System

Known Issues:

Not provided.

Target Audience:

The scope of this STIG covers the Corporate Owned Business Only (COBO) use case. The Corporate Owned Personally Enabled (COPE), Bring Your Own Device (BYOD), and Bring Your Own Approved Device (BYOAD) use cases are not in scope for this STIG.

Target Operational Environment:

  • Managed
  • Specialized Security-Limited Functionality (SSLF)

Testing Information:

Not provided.

Regulatory Compliance:

This document is provided under the authority of DoDI 8500.01.

Comments/Warnings/Miscellaneous:

Not provided.

Disclaimer:

If the Authorizing Official (AO) has approved the use/storage of DoD data in one or more personal (unmanaged) apps, allowing unrestricted user activity in downloading and installing personal (unmanaged) apps on Zebra Technologies devices may not be warranted due to the risk of possible loss of or unauthorized access to DoD data. This STIG assumes that if a DoD Wi-Fi network allows Zebra Technologies devices to connect to the network, the Wi-Fi network complies with the Network Infrastructure STIG; for example, wireless access points and bridges must not be connected directly to the enclave network. DISA accepts no liability for the consequences of applying specific configuration settings made on the basis of the SRGs/STIGs. It must be noted that the configuration settings specified should be evaluated in a local, representative test environment before implementation in a production environment, especially within large user populations. The extensive variety of environments makes it impossible to test these configuration settings for all potential software configurations.

Product Support:

Not provided.

Point of Contact:

disa.stig_spt@mail.mil

Sponsor:

Developed by Zebra Technologies and DISA for the DoD

Licensing:

Not provided.

Change History: 

null
Change to FINAL - 5/26/22
updated URLs - 9/12/2022
Updated resource per DISA - 10/26/23

Dependency/Requirements:

URL Description

References:

Reference URL Description

NIST checklist record last modified on 10/26/2023