Apple iOS/iPadOS 18 must disable ChatGPT and other external AI app connections in Apple Intelligence.

STIG ID: AIOS-18-015400  |  SRG: PP-MDF-993300 |  Severity: medium |  CCI: CCI-000366 |  Vulnerability Id: V-268068

Vulnerability Discussion

The ChatGPT feature of Apple Intelligence allows DOD information to be downloaded from the DOD iPhone/iPad and processed by the ChatGPT application in the cloud. The ChatGPT feature of Apple Intelligence increases the risk of compromise of sensitive DOD information.

SFRID: FMT_MOF_EXT.1.2 #47

Check

This check procedure is performed on the device management tool and the device.

Note: If an organization has multiple configuration profiles, the check procedure must be performed on the relevant configuration profiles applicable to the scope of the review.

In the iOS management tool, verify the following controls are set to Disable (the text may vary, depending on the UEM/MDM product):
-Allow External Intelligence Integrations
-Allow External Intelligence Integrations Sign In

On the iPhone/iPad (Apple Intelligence capable device only):
1. Settings >> Apple Intelligence & Siri >> ChatGPT.
2. Verify “ChatGPT” is grayed out and disabled.

If ChatGPT and other external AI app connections are not disabled in the management tool or are not grayed out and disabled on the iPhone/iPad, this is a finding.

Fix

Install a configuration profile to disable ChatGPT and other external AI app connections for Apple Intelligence.

-Set allowExternalIntelligenceIntegrations to False
-Set allowExternalIntelligenceIntegrationsSignIn to False
This website is not created by, run, approved, or endorsed by the U.S. Department of Defense. Use at your own risk. This website is created by open-source software.