Title

BlackBerry 10 OS must prevent a user from installing unapproved applications from other sources. (Cat II impact)

Discussion

The operating system must enforce software installation by users based upon what types of software installations are permitted (e.g., updates and security patches to existing software) and what types of installations are prohibited (e.g., software whose pedigree with regard to being potentially malicious is unknown or suspect) by the organization. The installation and execution of unauthorized software on an operating system may allow the application to obtain sensitive information or further compromise the system. Preventing a user from installing unapproved applications mitigates this risk.

Check Content

On BlackBerry Device Service, verify the IT Policy rule "Install Apps From Other Sources" is set to "Disallow". Otherwise, this is a finding.

Fix Text

On BlackBerry Device Service, set the IT Policy rule "Install Apps From Other Sources" to "Disallow".

Additional Identifiers

Rule ID:

Vulnerability ID: V-47187

Group Title:

Expert Comments

CCIs tied to check.

Controls tied to check. These are derived from the CCIs shown above.