UCF STIG Viewer Logo

The Good Mobility Suite email client must support retrieving encryption certificates not stored in the local trust anchor store for S/MIME purposes.


Overview

Finding ID Version Rule ID IA Controls Severity
V-53033 GOOD-00-000620 SV-67249r1_rule Low
Description
Cryptography is only as strong as the encryption modules/algorithms that are employed to encrypt the data. Strong encryption must be used to protect the integrity and confidentiality of the data. In this case, the requirement stated that the email client must support retrieving certificates not stored in the local trust anchor store.
STIG Date
Good for Enterprise 8.x Security Technical Implementation Guide 2014-08-18

Details

Check Text ( C-54537r1_chk )
Review the Good Mobility Suite server configuration to verify the mobile email client that supports retrieving encryption certificates not stored in the local trust anchor store for S/MIME purposes. Otherwise, this is a finding.
Fix Text (F-57843r2_fix)
Configure the Good Mobility Suite server to retrieve encryption certificates not stored in the local trust anchor store for S/MIME purposes.

-Launch the Good Mobile Control Web console and click on the Settings tab
-On the left side, select Secure Messaging (S/MIME)
-Verify Enable Secure Messaging (S/MIME) is checked and the LDAP and OCSP URL values are configured properly
-Click on Save