Help Center

Local Navigation

TLS Minimum Strong DSA Key Length IT policy rule

Description

This rule specifies the minimum DSA key size (in bits) to use over TLS connections. The permitted range is 512 through 1024 bits.

Default value

The default value on a BlackBerry® device is 1024 bits.

The default value on the BlackBerry® Enterprise Server is 512 bits.

Usage

If you configure the minimum key size on the BlackBerry Enterprise Server to be higher than the minimum key size on the BlackBerry device, the BlackBerry device continues to prompt the user to trust every secure web site that uses a key size in its certificate that is less than the minimum key size on the BlackBerry Enterprise Server.

For example, when a user browses to a secure web site that uses a 512-bit DSA key in its certificate, the BlackBerry device prompts the user to trust the web site. If the user trusts the web site and selects the Don't Ask Again option, the minimum key size on the BlackBerry device is configured to 512 bits. If you configure the minimum key size on the BlackBerry Enterprise Server to 1024 bits, the BlackBerry device continues to prompt the user to trust every secure web site that uses a key size in its certificate that is less than 1024 bits.

Minimum requirements

  • Java® based BlackBerry device
  • BlackBerry® Application Suite version 1.0
  • BlackBerry® Connect™ version 4.0
  • BlackBerry® Device Software version 3.6.1
  • BlackBerry Enterprise Server version 3.6 SP1

Index


Was this information helpful? Send us your comments.