Help Center

Local Navigation

TLS Minimum Strong ECC Key Length IT policy rule

Description

This rule specifies the minimum ECC key size (in bits) to use over TLS connections. The permitted range is 160 through 571 bits.

Default value

The default value on a BlackBerry® device is 163 bits.

The default value on the BlackBerry® Enterprise Server is 160 bits.

Usage

If you configure the minimum key size on the BlackBerry Enterprise Server to be higher than the minimum key size on the BlackBerry device, the BlackBerry device continues to prompt the user to trust every secure web site that uses a key size in its certificate that is less than the minimum key size on the BlackBerry Enterprise Server.

For example, when a user browses to a secure web site that uses a 160-bit ECC key in its certificate, the BlackBerry device prompts the user to trust the web site. If the user trusts the web site and selects the Don't Ask Again option, the minimum key size on the BlackBerry device is configured to 160 bits. If you configure the minimum key size on the BlackBerry Enterprise Server to 233 bits, the BlackBerry device continues to prompt the user to trust every secure web site that uses a key size in its certificate that is less than 233 bits.

Minimum requirements

  • Java® based BlackBerry device
  • BlackBerry® Application Suite version 1.0
  • BlackBerry® Connect™ version 4.0
  • BlackBerry® Device Software version 3.6.1
  • BlackBerry Enterprise Server version 3.6

Index


Was this information helpful? Send us your comments.