PGP
Application policy group
The IT policy rules in the PGP® Application policy group apply to BlackBerry® devices running the PGP® Support Package for BlackBerry smartphones. For more information about using the PGP Support Package for BlackBerry smartphones,
see the PGP Support Package for BlackBerry Devices Security Technical Overview.
PGP
Allowed Content Ciphers IT policy rule
Description
This rule specifies the encryption algorithms that a BlackBerry® device can use to encrypt PGP® protected messages.
Default value
The default value is to use all supported algorithms.
Usage
Specify the content ciphers that a BlackBerry device can use to
encrypt PGP
messages from the following list:
- AES (256-bit)
- AES (192-bit)
- AES (128-bit)
- CAST (128-bit)
- Triple DES
To maintain compatibility with most PGP clients, use Triple DES encryption and CAST. By default, a BlackBerry device is designed to encrypt email messages using Triple DES encryption if it does not know the decryption capabilities available to a recipient.
Minimum requirements
- Java® based
BlackBerry device
- PGP® Support Package for BlackBerry®
smartphones version 4.1
- BlackBerry® Application Suite version 1.0
- BlackBerry®
Device Software
version 4.1
- BlackBerry® Enterprise Server Express 5.0 SP2
PGP
Allowed Encrypted Attachment Mode IT policy rule
Description
This rule specifies the mode for retrieving PGP® protected attachment information on a BlackBerry® device.
Default value
The default value is Automatic. A BlackBerry device requests decrypted attachment information from the BlackBerry® Enterprise Server Express Express
automatically when users open PGP protected messages that contain attachments.
Minimum requirements
- Java® based BlackBerry device
- BlackBerry®
Device Software version 4.5
- BlackBerry® Enterprise Server Express 5.0 SP2
PGP Allowed Encryption Types
IT policy rule
Description
This rule specifies the types of encryption that a BlackBerry® device can use with PGP® protected messaging.
Default value
The default value is Both. The BlackBerry device uses PGP based encryption and conventional encryption.
Minimum requirements
- Java® based BlackBerry
device
- PGP® Support Package for BlackBerry®
smartphones version 4.0
- BlackBerry®
Device Software version 4.6
- BlackBerry® Enterprise Server Express 5.0 SP2
PGP
Force Digital Signature IT policy rule
Description
This rule specifies whether a BlackBerry®
device
digitally signs all PGP® protected messages that it sends.
Default value
The default value is No.
Usage
If you apply this rule, you might override secure email policy settings on the PGP Universal Server.
Minimum requirements
- Java® based
BlackBerry device
- PGP® Support Package for BlackBerry®
smartphones version 4.1
- BlackBerry® Application Suite version 1.0
- BlackBerry®
Device Software
version 4.1
- BlackBerry® Enterprise Server Express 5.0 SP2
PGP
Force Encrypted Messages IT policy rule
Description
This rule specifies whether a
BlackBerry®
device encrypts all PGP® protected messages that it sends.
Default value
The default value is No.
Usage
If you apply this rule, you might override secure email policy settings on the PGP Universal Server.
Minimum requirements
- Java® based
BlackBerry
device
- PGP® Support Package for BlackBerry®
smartphones version 4.1
- BlackBerry® Application Suite version 1.0
- BlackBerry®
Device Software
version 4.1
- BlackBerry® Enterprise Server Express 5.0 SP2
PGP
Minimum Strong DH Key Length IT policy rule
Description
This rule specifies the minimum Diffie-Hellman key size (in bits) to use with PGP® protected messages.
The permitted range is 512 through 4096 bits.
Default value
The default value is 1024 bits.
Minimum requirements
- Java® based
BlackBerry®
device
- PGP® Support Package for BlackBerry®
smartphones version 4.1
- BlackBerry® Application Suite version 1.0
- BlackBerry®
Device Software
version 4.1
- BlackBerry® Enterprise Server Express 5.0 SP2
PGP
Minimum Strong DSA Key Length IT policy rule
Description
This rule specifies the minimum DSA key size (in bits) to use with PGP® protected messages.
The permitted range is 512 through 1024 bits.
Default value
The default value is 1024 bits.
Minimum requirements
- Java® based
BlackBerry®
device
- PGP® Support Package for BlackBerry®
smartphones version 4.1
- BlackBerry® Application Suite version 1.0
- BlackBerry®
Device Software
version 4.1
- BlackBerry® Enterprise Server Express 5.0 SP2
PGP Minimum Strong RSA Key Length IT policy rule
Description
This rule specifies the minimum RSA® key size (in bits) to use with PGP® protected messages.
The permitted range is 512 through 4096 bits.
Default value
The default value is 1024 bits.
Minimum requirements
- Java® based
BlackBerry®
device
- PGP® Support Package for BlackBerry®
smartphones version 4.1
- BlackBerry® Application Suite version 1.0
- BlackBerry®
Device Software
version 4.1
- BlackBerry® Enterprise Server Express 5.0 SP2
PGP More All and Send Mode
IT policy rule
Description
This rule specifies the mode that a BlackBerry®
device uses to retrieve the complete text of an email message when a user replies to or forwards that email message.
Default value
The default value is Manual.
A BlackBerry device
user must request the complete text of the email message when the user replies to or forwards that email message.
Usage
Change this rule to Automatic to retrieve the complete text of the email message automatically.
Minimum requirements
- Java® based
BlackBerry device
- BlackBerry®
Device Software
version 5.1
- BlackBerry® Enterprise Server Express 5.0 SP2
PGP
Universal Enrollment Method IT policy rule
Description
This rule specifies the method that users must use to enroll with the PGP® Universal Server from a BlackBerry® device.
Default value
The default value is Email-based enrolment. Users are prompted to type their email address.
Usage
Change this rule to Domain username/password enrolment to prompt users to type their user name and password.
Users must submit their enrollment information before sending and receiving PGP protected messages on a BlackBerry device.
Minimum requirements
- Java® based
BlackBerry device
- PGP® Support Package for BlackBerry®
smartphones version 4.1
- BlackBerry® Application Suite version 1.0
- BlackBerry®
Device Software
version 4.1
- BlackBerry® Enterprise Server Express 5.0 SP2
PGP
Universal Policy Cache Timeout IT policy rule
Description
This rule specifies the length of time (in hours) that a BlackBerry® device caches the PGP® Universal Server address.
The permitted range is 4 through 48 hours.
Default value
The default value is 24 hours.
Minimum requirements
- Java® based
BlackBerry device
- PGP® Support Package for BlackBerry®
smartphones version 4.1
- BlackBerry® Application Suite version 1.0
- BlackBerry®
Device Software version 4.1
- BlackBerry® Enterprise Server Express 5.0 SP2
PGP Universal Server Address IT policy rule
Description
This rule specifies the address of your organization's PGP® Universal Server.
The PGP Universal Server applies secure email policies that the PGP Universal Server
administrator configures.
Default value
The default value is a null value.
Usage
Configure this rule to require the user to register with the PGP Universal Server. When registered, a BlackBerry®
device
with the PGP Support Package for BlackBerry®
smartphones enforces compliance with the secure email policies for all email messages.
Dependencies
If you configure this rule, a user must install the PGP Support Package for BlackBerry smartphones on the BlackBerry
device.
Minimum requirements
- Java® based
BlackBerry
device
- PGP® Support Package for BlackBerry®
smartphones version 4.1
- BlackBerry® Application Suite version 1.0
- BlackBerry®
Device Software
version 4.1
- BlackBerry® Enterprise Server Express 5.0 SP2
Was this information helpful? Send us your comments.
