The default value in the Advanced security and Advanced Security with No 3rd Party Applications IT policies is Strong.
The default value in all other preconfigured IT policies is a null value.
Usage
Configure this rule to Strong to use a 160-bit ECC public key. This key provides good security and good performance and is
adequate for most situations.
Configure this rule to Stronger to use a 283-bit ECC public key. This key provides better security but slower performance than
the Strong setting.
Configure this rule to Strongest to use a 571-bit ECC public key. This key provides the highest level of security but the slowest
performance of the three settings.
For BlackBerry devices that are running BlackBerry® Device Software 5.0 and later, if onboard device memory exists on the
BlackBerry device when you configure this rule, the rule also encrypts the onboard device memory (embedded M.C.) to the user
password and a device-generated key.
To encrypt the media files in the onboard device memory, configure the Encryption on On-Board Device Memory Media Files IT
policy rule, or instruct the BlackBerry device user to configure file encryption.
For BlackBerry devices that are running BlackBerry Device Software versions that are earlier than version 5.0, you can configure
the External File System Encryption Level IT policy rule. The External File System Encryption Level IT policy rule also encrypts the
media card.
Dependencies
A BlackBerry device uses this rule only if you configure the Password Required IT policy rule to Yes.
If you configure this rule to Strong or Stronger, configure the Minimum Password Length IT policy rule to 12 characters. If you
configure the content protection strength to Strongest, instruct the user to create a password of at least 21 characters. These
password lengths maximize the encryption strength that the longer ECC keys are designed to provide.
Minimum requirements
•
Java® based BlackBerry device
•
BlackBerry® Application Suite 1.0
•
BlackBerry® Connect™ 4.0
•
BlackBerry® Device Software 4.0
•
BlackBerry® Enterprise Server 4.0
Content Protection Usage IT policy rule
Description
This rule specifies whether you or a BlackBerry® device user can turn on content protection for a BlackBerry device.
Default value
Policy Reference Guide
Security policy group
170