Finding ID | Version | Rule ID | IA Controls | Severity |
---|---|---|---|---|
V-19775 | WIR1450-37 | SV-21938r2_rule | ECSC-1 | Medium |
Description |
---|
Users can connect to public BlackBerry MDS Integration Services to access public content, web, and application servers. These servers are not DoD approved and may contain malware that could be downloaded on a BlackBerry and transferred to the DoD enclave. |
STIG | Date |
---|---|
BlackBerry Enterprise Server (version 5.x), Part 3 Security Technical Implementation Guide | 2013-06-21 |
Check Text ( C-24824r2_chk ) |
---|
Detailed Policy Requirements: User Initiated access to Public BlackBerry MDS Integration Services will be blocked. *****For this check, set IT Policy rule “Disable User Initiated Activation With Public BlackBerry MDS Integration Service” (BlackBerry MDS Integration Service policy group) to “Yes". Check Procedures: This is a BES IT Policy check. Recommend all checks related to BES IT policies be reviewed using the procedure in Check WIR1400-01 (V0003545). *****Verify IT Policy rule “Disable User initiated Activation With Public BlackBerry MDS Integration Service” (BlackBerry MDS Integration Service policy group) is set as required. |
Fix Text (F-23386r2_fix) |
---|
Configure the IT Policy rule Require FIPS Ciphers as specified in the "Checks" block. |