Title

BlackBerry 10 OS must employ mobile device management services to centrally manage IT Policies. (Cat II impact)

Discussion

Security related parameters are those parameters impacting the security state of the system and include parameters related to the implementation of other IA controls. If these controls are not implemented, the system may be vulnerable to a variety of attacks. The use of mobile device management (MDM) allows an organization to assign values to security related parameters across all the devices it manages. This provides assurance that the required mobile OS security controls are being enforced, and that the device user or an adversary has not modified or disabled the controls. It also greatly increases efficiency and manageability of devices in a large scale environment relative to an environment in which each device must be configured separately.

Check Content

From either the Work Space or Personal Space, navigate to "Settings >> About >> Work Space". Under "IT Policy", verify "Policy Name" value is identical to the name of the IT Policy assigned from BDS. Otherwise, this is a finding.

Fix Text

On BlackBerry Device Service, navigate to "BlackBerry solution management >> User >> Manage users >> <affected user's device PIN>". Select "Resend IT Policy to a device".

Additional Identifiers

Rule ID:

Vulnerability ID: V-47217

Group Title:

Expert Comments

CCIs tied to check.

Controls tied to check. These are derived from the CCIs shown above.