Finding ID | Version | Rule ID | IA Controls | Severity |
---|---|---|---|---|
V-22053 | WIR1450-40 | SV-25489r2_rule | ECWN-1 | Low |
Description |
---|
This rule specifies whether a BlackBerry® device must prevent social networking applications from accessing organizer data. BlackBerry organizer (calendar, notes, and contacts) may contain sensitive DoD information that could be exposed to the public if social networking applications had access to it. |
STIG | Date |
---|---|
BlackBerry Enterprise Server (version 5.x), Part 3 Security Technical Implementation Guide | 2014-08-25 |
Check Text ( C-27004r2_chk ) |
---|
Detailed Policy Requirements: *****For this check, set IT Policy rule “Disable organizer data access for social networking applications” (RIM Value-Added Applications policy group) to “Yes”. Check Procedures: This is a BES IT Policy check. Recommend all checks related to BES IT policies be reviewed using the procedure in Check WIR1400-01 (V0003545). *****Verify IT Policy rule “Disable organizer data access for social networking applications” (RIM Value-Added Applications policy group) is set as required. |
Fix Text (F-27141r1_fix) |
---|
Set IT Policy rule “Disable organizer data access for social networking applications” (RIM Value-Added Applications policy group) to Yes. |