Help Center

Local Navigation

FIPS Level IT policy rule

Description

This rule specifies the level of FIPS compliance that your organization requires.

Default value

The default value is FIPS 140-2 Level 1 compliance.

Usage

This rule is obsolete in BlackBerry® Enterprise Server versions 4.1 SP3 and later and BlackBerry® Device Software versions 4.2.1 and later.

FIPS 140-2 Level 1 compliance affects the BlackBerry® Cryptographic Kernel, which is the embedded cryptographic module required for basic operation of a BlackBerry device.

FIPS 140-2 Level 2 compliance affects only the BlackBerry Device Software. It does not result in a BlackBerry device meeting FIPS 140-2 Level 2 hardware security requirements.

If you change this rule to Level 2, a BlackBerry device prevents WTLS from using an RC encryption algorithm, which can cause problems when using WTLS.

Dependencies

If you change this rule to 2, the following additional IT policy rules are configured:

  • Password Required is configured to Yes
  • Minimum Password Length is configured to 5
  • Suppress Password Echo is configured to Yes
  • PGP® Allowed Content Ciphers is configured to AES (256-bit), AES (192-bit), AES (128-bit), Triple DES
  • S/MIME Allowed Content Ciphers is configured to AES (256-bit), AES (192-bit), AES (128-bit), Triple DES
  • TLS Restrict FIPS Ciphers is configured to Yes
  • Disallow Third Party Application Download is configured to Yes

Minimum requirements

  • Java® based BlackBerry device
  • For FIPS Level 1 compliance, BlackBerry Device Software version 3.3
  • For FIPS Level 2 compliance, BlackBerry Device Software version 4.0
  • BlackBerry® Application Suite version 1.0
  • BlackBerry® Connect™ version 4.0
  • BlackBerry Enterprise Server version 4.0

Exceptions

The BlackBerry® Enterprise Server for Novell® GroupWise® supports this rule in BlackBerry Device Software version 4.0 to version 4.2.1.

Index


Was this information helpful? Send us your comments.