Free DISA STIG and SRG Library | Vaulted

V-19281

BlackBerry devices must be provisioned so users can digitally sign and encrypt email notifications.

Finding ID
WIR1055-02
Rule ID
SV-21197r3_rule
Severity
Cat III
CCE
(None)
Group Title
Sign email messages - 02
CCI
(None)
Target Key
(None)
Documentable
No
Discussion

S/MIME provides the capability for users to send and receive S/MIME email messages from wireless email devices. S/MIME and digital signatures provide assurance that the message is authentic and is required by DoD policy. Reference the DoD CIO memorandum regarding interim guidance on the use of derived PKI credentials (2015-05-06 DoD Interim Guidance for Implementing Derived PKI Credentials on Unclass CMDs) for Blackberry BlackBerry certificate configuration information.

Fix Text

BlackBerry devices must be provisioned so users can digitally sign and encrypt emergency and/or critical email notifications.

Check Content

If user software certificates are used on the BlackBerry instead of the CAC, verify the AO has approved their use (letter, memo, SSP, etc.).

Responsibility

Information Assurance Officer