Configure PIN
Summary
Devices that connect to the mobile network must have a personal identification number (PIN) configured on the SIM card.
Description
empty
Supported In
This requirement is verified in following services
Plan | Supported |
---|---|
Machine | 🔴 |
Squad | 🟢 |
References
- OWASP TOP 10-A5. Security misconfiguration
- NIST Framework-PR_PT-2. Removable media is protected and its use restricted according to policy
- PA-DSS-1_1_3. Do not store personal identification number (PIN) or the encrypted PIN block
- CMMC-AC_L2-3_1_18. Mobile device connection
- CMMC-MP_L2-3_8_2. Media access
- CMMC-MP_L2-3_8_7. Removable media
- CMMC-PE_L1-3_10_5. Manage physical access
- CMMC-SC_L2-3_13_13. Mobile code
- HITRUST CSF-01_x. Mobile computing and communications
- HITRUST CSF-09_k. Controls against mobile code
- FedRAMP-MP-2. Media access
- ISO/IEC 27002-7_9. Security of assets off-premises
- ISO/IEC 27002-8_1. User endpoint devices
- ISA/IEC 62443-UC-2_3. Use control for portable and mobile devices
- ISA/IEC 62443-UC-2_4. Mobile code
- OWASP MASVS-V2_11. Security verification requirements
- NIST 800-171-1_18. Control connection of mobile devices
- SWIFT CSCF-3_1. Physical security
- SIG Core-H_3_1_19. Access control
- SIG Core-M_1_25. End user device security
- ISO/IEC 27001-7_9. Security of assets off-premises
- ISO/IEC 27001-8_1. User endpoint devices
Vulnerabilities
free trial
Search for vulnerabilities in your apps for free with our automated security testing! Start your 21-day free trial and discover the benefits of our Continuous Hacking Machine Plan. If you prefer a full service that includes the expertise of our ethical hackers, don't hesitate to contact us for our Continuous Hacking Squad Plan.