BlackBerry 10 OS must support both software-based and hardware-based asymmetric key technology (e.g., CAC/PIV).

Overview

Finding ID	Version	Rule ID	IA Controls	Severity
V-39316	BB10-00-003400	SV-51139r1_rule		Medium

Description
Software-based certificates are required to authenticate many web sites. Hardware-based tokens are embedded in the DoD Common Access Card (CAC). Without both software and hardware-based asymmetric key technology, there is the potential that critical authentication transactions cannot occur. This will either hinder performance of the mission or degrade the IA posture of one or more applications. If the operating system can support both software and hardware-based asymmetric key technology, this provides assurance that all required certificate-based transactions are supported.

Description

Software-based certificates are required to authenticate many web sites. Hardware-based tokens are embedded in the DoD Common Access Card (CAC). Without both software and hardware-based asymmetric key technology, there is the potential that critical authentication transactions cannot occur. This will either hinder performance of the mission or degrade the IA posture of one or more applications. If the operating system can support both software and hardware-based asymmetric key technology, this provides assurance that all required certificate-based transactions are supported.

STIG	Date
BlackBerry 10 OS Security Technical Implementation Guide	2014-08-27

Details

Check Text ( C-46572r3_chk )
From either the Work Space or Personal Space, navigate to "Settings -> Security and Privacy" and verify "Smart Card" option is present. Otherwise, this is a finding.

Fix Text (F-44295r2_fix)
From either the Work Space or Personal Space, navigate to "Settings -> Security and Privacy" and verify "Smart Card" option is present. Otherwise, this is a finding.