Skip to content
Log In

II - Mission Support Classified

Rules and Groups employed by this XCCDF Profile

  • SRG-APP-000516-AS-000237

    Group
    Show

  • If the BlackBerry Docs service is installed on the BlackBerry Enterprise Mobility Server (BEMS), it must be configured to use SSL for LDAP lookup to connect to the Office Web App Server (e.g., SharePoint).

    Preventing the disclosure of transmitted information requires that applications take measures to employ some form of cryptographic mechanism to protect the information during transmission. This is ...
    Rule High Severity
    Show

  • SRG-APP-000516-AS-000237

    Group
    Show

  • If the BlackBerry Docs service is installed on the BlackBerry Enterprise Mobility Server (BEMS), it must be configured to enable audit logs.

    Logging must be used to track system activity, assist in diagnosing system issues, and provide evidence needed for forensic investigations post security incident.
    Rule Medium Severity
    Show

  • SRG-APP-000179-AS-000129

    Group
    Show

  • The BlackBerry Enterprise Mobility Server (BEMS) server must be configured to enable FIPS mode.

    Encryption is only as good as the encryption modules utilized. Unapproved cryptographic module algorithms cannot be verified and cannot be relied upon to provide confidentiality or integrity, and D...
    Rule Medium Severity
    Show

  • SRG-APP-000516-AS-000237

    Group
    Show

  • If the BlackBerry Connect service is installed on the BlackBerry Enterprise Mobility Server (BEMS), it must be configured to enable the Web Proxy.

    The web proxy provides a secure gateway for the BlackBerry Connect service so that BEMS can securely connect to the internet.
    Rule Medium Severity
    Show

  • SRG-APP-000516-AS-000237

    Group
    Show

  • If the BlackBerry Presence service is installed on the BlackBerry Enterprise Mobility Server (BEMS), it must be configured with the whitelisting control to limit presence subscriptions to only single domain/tenant.

    Whitelisting in Presence subscriptions is used to control which internal and federated environments can be subscribed to. Presence subscriptions should be limited to only DOD environments to contro...
    Rule Low Severity
    Show

  • SRG-APP-000516-AS-000237

    Group
    Show

  • If the BlackBerry Docs service is installed on the BlackBerry Enterprise Mobility Server (BEMS), it must be configured to enable the proxy server authentication type (if a proxy is used).

    The web proxy provides a secure gateway for the BlackBerry Docs service so that BEMS can securely connect to enterprise servers.
    Rule Medium Severity
    Show

  • SRG-APP-000118-AS-000078

    Group
    Show

  • The BlackBerry Enterprise Mobility Server (BEMS) must protect log information from any type of unauthorized read access.

    If log data were to become compromised, then competent forensic analysis and discovery of the true source of potentially malicious system activity is difficult, if not impossible, to achieve. In ad...
    Rule Medium Severity
    Show

Node 2

siemur/test-space

The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.

Capacity
Modules