Title

BlackBerry devices must be provisioned so users can digitally sign and encrypt email notifications. (Cat III impact)

Discussion

S/MIME provides the capability for users to send and receive S/MIME email messages from wireless email devices. S/MIME and digital signatures provide assurance that the message is authentic and is required by DoD policy. Reference the DoD CIO memorandum regarding interim guidance on the use of derived PKI credentials (2015-05-06 DoD Interim Guidance for Implementing Derived PKI Credentials on Unclass CMDs) for Blackberry BlackBerry certificate configuration information.

Check Content

If user software certificates are used on the BlackBerry instead of the CAC, verify the AO has approved their use (letter, memo, SSP, etc.).

Fix Text

BlackBerry devices must be provisioned so users can digitally sign and encrypt emergency and/or critical email notifications.

Additional Identifiers

Rule ID: SV-21197r3_rule

Vulnerability ID: V-19281

Group Title:

Expert Comments

CCIs tied to check.

Controls tied to check. These are derived from the CCIs shown above.