U.S. flag   An official website of the United States government
Dot gov

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Https

Secure .gov websites use HTTPS
A lock (Dot gov) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.

National Checklist Program

National Checklist Program

NCP

  1. Checklist Repository

Samsung Knox Android 1.0 STIG Version 2 Release 2 Checklist Details (Checklist Revisions)

Supporting Resources:

Target:

Target CPE Name
Samsung Knox Android 1.0 cpe:/o:samsung:knox_android:1.0 (View CVEs)

Checklist Highlights

Checklist Name:
Samsung Knox Android 1.0 STIG
Checklist ID:
458
Version:
Version 2 Release 2
Type:
Compliance
Review Status:
Archived
Authority:
Governmental Authority: Defense Information Systems Agency
Original Publication Date:
05/03/2013

Checklist Summary:

The Samsung Knox Android 1.0 Overview, along with the Samsung Knox Android Security Technical Implementation Guide (STIG), provides the technical security policies, requirements, and implementation details for applying security concepts to Samsung Knox Android 1.0. The Samsung Knox Android Platform is an extension of Android 4.1.1 (Jelly Bean) built on a SELinux-enabled kernel. It also fully incorporates Samsung SAFE, a technology used to facilitate MDM control of Samsung devices and provide additional security not found in native Android. Knox Android was designed to meet the requirements of the MOS SRG. Samsung Knox Android 1.0 currently supports the North American versions of the Samsung Galaxy S3 and Galaxy S4. Key IA features found in Samsung Knox Android that are not present in typical Android devices are: ï‚· Mobile application quarantine, ï‚· Smart card support, ï‚· Host-based firewall, ï‚· Ability to revoke mobile application permissions, ï‚· Over-the-air (OTA) audit log retrieval, and ï‚· Support for PKI authentication and certificate verification in native browser.

Checklist Role:

  • Desktop or Mobile Client

Known Issues:

Not provided.

Target Audience:

This document is a requirement for all DoD administered systems and all systems connected to DoD networks. These requirements are designed to assist Security Managers (SMs), Information Assurance Managers (IAMs), Information Assurance Officers (IAOs), and System Administrators (SAs) with configuring and maintaining security controls.

Target Operational Environment:

  • Managed
  • Specialized Security-Limited Functionality (SSLF)

Testing Information:

Not provided.

Regulatory Compliance:

DoD Directive (DoDD) 8500.1 and 8500.2

Comments/Warnings/Miscellaneous:

Comments or proposed revisions to this document should be sent via email to the following address: disa.stig_spt@mail.mil. DISA Field Security Operations (FSO) will coordinate all change requests with the relevant DoD organizations before inclusion in this document.

Disclaimer:

Not provided.

Product Support:

Comments or proposed revisions to this document should be sent via email to the following address: disa.stig_spt@mail.mil. DISA Field Security Operations (FSO) will coordinate all change requests with the relevant DoD organizations before inclusion in this document.

Point of Contact:

disa.stig_spt@mail.mil

Sponsor:

Developed by Samsung Electronics Co., Ltd.; Fixmo, Inc.; and General Dynamics C4 Systems, Inc. (GDC4S) in coordination with DISA for the DoD

Licensing:

Not provided.

Change History: 

Version 2, 1 May 2014
Version 1, 13 May 2013
Version 1, 3 May 2013
Version 2, Release 2 - 30 October 2014
Updated status to "Final" - 07 January 2015
archived - 05/19/2017
null
Updated URL to reflect change to the DISA website - http --> https

Dependency/Requirements:

URL Description

References:

Reference URL Description

NIST checklist record last modified on 08/16/2017