Finding ID | Version | Rule ID | IA Controls | Severity |
---|---|---|---|---|
V-22049 | WIR1450-41 | SV-25480r2_rule | ECWN-1 | Medium |
Description |
---|
This rule allows the user to download unapproved applications from the BlackBerry application store. Some of these applications may have the capability to expose DoD sensitive information to unauthorized people or expose the BlackBerry to other attacks. |
STIG | Date |
---|---|
BlackBerry Enterprise Server, Part 3 Security Technical Implementation Guide | 2012-10-01 |
Check Text ( C-27000r2_chk ) |
---|
Detailed Policy Requirements: Only DoD approved applications will be used. *****For this check, set IT Policy rule “Disable BlackBerry App World” (Security policy group) to “Yes”. Check Procedures: This is a BES IT Policy check. Recommend all checks related to BES IT policies be reviewed using the procedure in Check WIR1400-01 (V0003545). *****Verify IT Policy rule “Disable BlackBerry App World” (Security policy group) is set as required. |
Fix Text (F-23386r1_fix) |
---|
Configure the IT Policy rule as specified in the "Checks" block. |