UCF STIG Viewer Logo

BlackBerry PlayBook OS must prohibit a user from reusing any of the last five previously used device unlock passwords.


Overview

Finding ID Version Rule ID IA Controls Severity
V-38711 PB21-00-000180 SV-50516r1_rule Low
Description
Password complexity, or strength, is a measure of the effectiveness of a password in resisting guessing and brute force attacks. Remembering the prior five device unlock passwords enables the operating system from permitting those passwords to be reused, which increases the resistance against password attacks.
STIG Date
BlackBerry PlayBook OS V2.1 Security Technical Implementation Guide 2014-08-29

Details

Check Text ( C-46279r1_chk )
If the local command determines that there is not a need for password rotation based on the expected operational use of the device, this requirement does not apply.

On BlackBerry Device Service:
"Maximum Password History" IT Policy rule must be set to 5 or more. Otherwise, this is a finding.
Fix Text (F-43665r1_fix)
On BlackBerry Device Service:
Set "Maximum Password History" IT Policy rule to: 5.