• Purpose
• Policy
• Related Documents
• Responsibility
• History

Purpose

The purpose of this document is to establish S/Medicine Dean’s Office IT policy on securing BlackBerry PDAs from unauthorized access.

Policy

It is the policy of the S/Medicine Dean’s Office to secure all BlackBerry PDAs with a security policy enforced from the BlackBerry Enterprise Server. The policy is described below:

BlackBerry Server Security Policy

1. Passwords are required
2. Minimum password length is 4 characters
3. User cannot disable password requirement
4. Maximum inactivity timeout is 1 hour
5. Maximum password age is 365 days
6. Maximum password entry attempts is 5
7. Device lockout after 5 attempts is 10 minutes
8. Allow BCC recipients
9. Allow attachment viewing
10. Enable wireless email reconciliation
11. Allow Peer-to-Peer messages
12. Content Protection Strength Strong (Always encrypted)
    

Related Documents

ISU Strong Password Requirements

Responsibility

Any employee found to have violated this policy might be subject to disciplinary action, up to and including termination of employment. Contractors, consultants, IT service providers and all others found to have violated this policy could be subject to financial penalties, up to and including termination of contract.

History

This policy was first drafted 4/6/05 and approved for implementation 5/4/05.

This guideline is intended for use by UCSF School of Medicine Dean’s Office Information Services staff and personnel and no representations or warranties are made for outside use. Not for outside production or publication without permission. Direct inquiries can be made to Information Services at (415) 502-1919.