U.S. flag   An official website of the United States government
Dot gov

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Https

Secure .gov websites use HTTPS
A lock (Dot gov) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.

National Checklist Program

National Checklist Program

NCP

  1. Checklist Repository

BlackBerry (OS7 and BES5) STIG Version 2, Release 11 Checklist Details (Checklist Revisions)

Supporting Resources:

Target:

Target CPE Name
Research In Motion (RIM) Blackberry Enterprise Server (BES) 5.0.4 cpe:/a:rim:blackberry_enterprise_server:5.0.4 (View CVEs)
Research In Motion (RIM) Blackberry OS 5.0 cpe:/o:rim:blackberry_os:5.0 (View CVEs)
Research In Motion (RIM) Blackberry OS 6.0 cpe:/o:rim:blackberry_os:6.0 (View CVEs)
Research In Motion (RIM) Blackberry OS 7.0 cpe:/o:rim:blackberry_os:7.0 (View CVEs)

Checklist Highlights

Checklist Name:
BlackBerry (OS7 and BES5) STIG
Checklist ID:
447
Version:
Version 2, Release 11
Type:
Compliance
Review Status:
Under Review
Authority:
Governmental Authority: Defense Information Systems Agency
Original Publication Date:
04/26/2013

Checklist Summary:

The BlackBerry Security Technical Implementation Guide (STIG) and associated documents e.g., BlackBerry Overview, BlackBerry Configuration Tables, BlackBerry Handheld STIG, and BlackBerry Enterprise Server STIG), provide security policy and configuration requirements for the use of BlackBerry wireless email in the Department of Defense (DoD). Guidance in these documents applies to all BlackBerry systems, including BlackBerry handheld devices and BlackBerry Enterprise Server (BES). This STIG provides security requirements for BES 5.0.4 and BlackBerry OS 5-7.x.

Checklist Role:

  • Enterprise Email Server
  • Desktop or Mobile Client

Known Issues:

Not provided.

Target Audience:

This document is a requirement for all DoD-administered systems and all systems connected to DoD networks. These requirements are designed to assist Information Assurance Managers (IAMs), Information Assurance Officers (IAOs), and System Administrators (SAs) with configuring and maintaining security controls. This guidance supports DoD system design, development, implementation, certification, and accreditation efforts.

Target Operational Environment:

  • Managed
  • Specialized Security-Limited Functionality (SSLF)

Testing Information:

BlackBerry virus protection features have been tested by National Security Agency (NSA) and DISA and were approved by the Defense Information System Network (DISN) Security Accreditation Working Group (DSAWG) in 2006 as meeting DoD security requirements when the initial release of this Checklist was approved.

Regulatory Compliance:

DoD Directive (DoDD) 8500.1

Comments/Warnings/Miscellaneous:

Not provided.

Disclaimer:

Not provided.

Product Support:

Not provided.

Point of Contact:

Comments or proposed revisions to this document should be sent via email to the following address: disa.letterkenny.FSO.mbx.stig-customer-support-mailbox@mail.mil.

Sponsor:

Not provided.

Licensing:

Not provided.

Change History: 



					

						Dependency/Requirements:
					

					

						
							

								URL
								Description
							

						
						
							
						
					


					

						References:
					


					

						
							

								Reference URL
								Description
							

						
						
							
						
					


					

						NIST checklist record last modified on 05/09/2013
					

					   

							

							* This checklist is still undergoing review for inclusion into the NCP.