Help Center

Local Navigation

TLS Minimum Strong RSA Key Length IT policy rule

Description

This rule specifies the minimum RSA® key size (in bits) to use over TLS connections. The permitted range is 512 through 4096 bits.

Default value

The default value on the BlackBerry® device is 1000 bits.

The default value on the BlackBerry® Enterprise Server is 512 bits.

Usage

If you configure the minimum key size on the BlackBerry Enterprise Server to be higher than the minimum key size on the BlackBerry device, the BlackBerry device continues to prompt the user to trust every secure web site that uses a key size in its certificate that is less than the minimum key size on the BlackBerry Enterprise Server.

For example, when a user browses to a secure web site that uses a 512-bit RSA key in its certificate, the BlackBerry device prompts the user to trust the web site. If the user trusts the web site and selects the Don't Ask Again option, the minimum key size on the BlackBerry device is configured to 512 bits. If you configure the minimum key size on the BlackBerry Enterprise Server to 2048 bits, the BlackBerry device continues to prompt the user to trust every secure web site that uses a key size in its certificate that is less than 2048 bits.

Minimum requirements

  • Java® based BlackBerry device
  • BlackBerry® Application Suite version 1.0
  • BlackBerry® Connect™ version 4.0
  • BlackBerry® Device Software version 3.6.1
  • BlackBerry Enterprise Server version 3.6

Index


Was this information helpful? Send us your comments.