Checklist Summary:

This document, Security Configuration Benchmark for Android 2.3, provides prescriptive guidance for establishing a secure configuration posture for the Android 2.3 OS

Checklist Role:

• Operating System

Known Issues:

Not provided.

Target Audience:

This document is intended for system and application administrators, security specialists, auditors, help desk, end users, and platform deployment personnel who plan to use, develop, deploy, assess, or secure solutions that use Android 2.3.

Target Operational Environment:

• Managed
• Specialized Security-Limited Functionality (SSLF)

Testing Information:

This guide was tested against the Android 2.3 and the Android Virtual Device (AVD) contained in version 2.3.3 of the Android Software Development Kit (SDK).

Regulatory Compliance:

Not provided.

Comments/Warnings/Miscellaneous:

If you are interested in participating in the consensus review process, please send us a note to feedback@cisecurity.org.

Disclaimer:

Not provided.

Product Support:

feedback@cisecurity.org.

Point of Contact:

feedback@cisecurity.org.

Sponsor:

This guide was created using a consensus review process comprised of volunteer and contract subject matter experts. Consensus participants provide perspective from a diverse set of backgrounds including consulting, software development, audit and compliance, security research, operations, government, and legal.

Licensing:

Not provided.

Change History:

updated URLs - 7/23/19
updated to 1.1.0  - 1/3/2020

Dependency/Requirements:

URL	Description

References:

Reference URL	Description

NIST checklist record last modified on 01/03/2020