STIGs Search Compare

STIGhub

A free tool to search and browse the entire DISA STIG library. Saves up to 75% in security compliance research time.

Navigation

Browse STIGs
Search
Compare Versions

Resources

About
Release Notes
VPAT
DISA STIG Library

STIGs updated 3 hours ago

Powered by Pylon

© 2026 Beacon Cloud Solutions, Inc. All rights reserved.

← Back to STIGs

BlackBerry PlayBook OS V2.1 Security Technical Implementation Guide

Version

V1R2

Release Date

Aug 29, 2014

SCAP Benchmark ID

BBPB21_STIG

Total Checks

31

Tags

other

CAT I: 4CAT II: 23CAT III: 4

Developed by BlackBerry Ltd. in coordination with DISA for use in the DoD. Comments or proposed revisions to this document should be sent via e-mail to the following address: disa.letterkenny.FSO.mbx.stig-customer-support-mailbox@mail.mil.

Export CKL Export CSV Export JSON Download STIG ZIP

Checks (31)

V-38703MEDIUMBlackBerry PlayBook OS must retain the lock work space until the user reestablishes access using established identification and authentication procedures.V-38704MEDIUMBlackBerry PlayBook OS must retain the device lock until the user reestablishes access using established identification and authentication procedures.V-38705MEDIUMBlackBerry PlayBook OS must lock the device after no more than 15 minutes of inactivity.V-38706LOWBlackBerry PlayBook OS must synchronize the internal clock at least once every 24 hours with an authoritative time server or the Global Positioning System.V-38707MEDIUMBlackBerry PlayBook OS must disallow the device unlock password from containing fewer than a specified minimum number of upper case alphabetic characters, lower case alphabetic characters, and numeric characters.V-38708MEDIUMBlackBerry PlayBook OS must disallow the device unlock password from containing fewer than a specified minimum number of lower case alphabetic characters.V-38709MEDIUMBlackBerry PlayBook OS must disallow the device unlock password from containing fewer than a specified minimum number of numeric characters.V-38710LOWBlackBerry PlayBook OS must enforce a maximum lifetime of 120 days for the device unlock password (password age).V-38711LOWBlackBerry PlayBook OS must prohibit a user from reusing any of the last five previously used device unlock passwords.V-38712MEDIUMBlackBerry PlayBook OS must enforce a minimum length for the work area password.V-38737LOWBlackBerry PlayBook OS must enforce a minimum length for the device unlock password.V-38738HIGHBlackBerry PlayBook OS must not permit mobile service carriers to have privileged access to the operating system or perform any function not directed by the user.V-38739HIGHBlackBerry PlayBook OS must prevent a user from installing applications from an untrusted source (other than BlackBerry World) in the personal space.V-38740MEDIUMBlackBerry PlayBook OS must only permit download of software from a DoD approved source (e.g., DoD operated mobile device application store or MDM server).V-38741MEDIUMBlackBerry PlayBook OSs Wi-Fi module must use EAP-TLS authentication when authenticating to DoD WLAN authentication servers.V-38742MEDIUMBlackBerry PlayBook OS must authenticate devices before establishing remote network (e.g., VPN) connections using bidirectional cryptographically based authentication between devices.V-38743MEDIUMBlackBerry PlayBook OS VPN client must employ DoD PKI approved mechanisms for authentication when connecting to DoD networks.V-38744MEDIUMBlackBerry PlayBook OSs VPN client must use either IPSec or SSL/TLS when connecting to DoD networks.V-38746MEDIUMBlackBerry PlayBook OS must prohibit the use of non-DoD authorized instant messaging (IM) systems.V-38748HIGHOnly DoD PKI issued or DoD approved software authentication certificates may be installed on BlackBerry PlayBook OS.V-38749MEDIUMOnly DoD PKI issued or DoD approved server authentication certificates may be installed on BlackBerry PlayBook OS.V-38750MEDIUMBlackBerry PlayBook OS must prevent a user from using a browser that does not direct its traffic to a DoD proxy server.V-38752MEDIUMBlackBerry PlayBook OS must employ mobile device management services to centrally manage IT Policies V-38753MEDIUMBlackBerry PlayBook OS must employ mobile device management services to centrally manage email settings V-38754MEDIUMBlackBerry PlayBook OS must employ mobile device management services to centrally manage Wi-Fi profiles V-38755MEDIUMBlackBerry PlayBook OS must employ mobile device management services to centrally manage VPN profiles V-38756MEDIUMBlackBerry PlayBook OS must encrypt all data on the mobile device using AES encryption (AES 128 bit encryption key length is the minimum requirement; AES 256 desired).V-38757MEDIUMBlackBerry PlayBook OS must prohibit wireless remote access connections except for personal hotspot service.V-38758MEDIUMBlackBerry PlayBook OS must not permit a user to disable the password-protected lock feature on the work space.V-38759MEDIUMBlackBerry PlayBook OS must allow user to configure a non-complex 4 digit password for the personal space.V-53891HIGHBlackBerry PlayBook OS versions no longer supported by the manufacturer or vendor must not be installed on a device.