BlackBerry 10 OS maximum number of consecutive unsuccessful unlock attempts must be configurable within a range from 5 to 10.

Overview

Finding ID	Version	Rule ID	IA Controls	Severity
V-40716	BB10-00-000350	SV-52716r1_rule		Medium

Description
The recommended setting for the maximum number of consecutive unsuccessful unlock attempts is 10. In some environments, a lower number may be needed to provide greater protection of sensitive information. Allowing for configuration enables the local command to enforce greater protection when it is deemed necessary. If the limit is not configurable, then it is permissible for a site to procure and deploy devices that enforce the limit specified by the organization, so long as that limit does not exceed 10.

Description

The recommended setting for the maximum number of consecutive unsuccessful unlock attempts is 10. In some environments, a lower number may be needed to provide greater protection of sensitive information. Allowing for configuration enables the local command to enforce greater protection when it is deemed necessary. If the limit is not configurable, then it is permissible for a site to procure and deploy devices that enforce the limit specified by the organization, so long as that limit does not exceed 10.

STIG	Date
BlackBerry 10 OS Security Technical Implementation Guide	2014-08-27

Details

Check Text ( C-47044r1_chk )
From either the Work Space or Personal Space, navigate to "Settings -> BlackBerry Balance. Under "Work Password", ensure the maximum value in the "Password attempt limit" drop down box is not greater than 10 (or organization defined number). Otherwise, this is a finding.

Fix Text (F-45641r1_fix)
On BlackBerry Device Service, set "Maximum Password Attempts" IT Policy rule to 10 (or the organization defined value).