Defining measures to prevent threats from viruses and malicious users
Consider using IT policy rules and application control policy rules to block threats from viruses and other methods of attack by users with malicious intent.
Limiting the resources that a third-party application can access on a device
Scenario |
Example application control policy rule |
Value |
|---|---|---|
Prevent third-party Java® applications from accessing a list of domains using the BlackBerry® Browser. |
List of Browser Filter Domains |
addresses of the domains |
Permit a third-party Java application from sending and receiving messages on a BlackBerry device. |
Is Access to the Email API Allowed |
Allowed |
Remove a third-party Java application from BlackBerry devices over the wireless network. |
Disposition |
Disallowed |
| Permit a third-party Java application to access the phone application on BlackBerry devices. | Is Access to the Phone API Allowed |
Allowed |
Permit a third-party Java application to create public external network connections and permit connections to external domains without prompting users for a password on their BlackBerry devices. |
Are External Network Connections Allowed |
Allowed |
List of External Domains |
addresses of the external domains |
|
Permit a third-party Java application to establish connections to Bluetooth® enabled devices. |
Is Access to the Serial Port Profile for Bluetooth API Allowed |
Allowed |
|
Are External Network Connections Allowed |
Allowed |
|
Prevent users from turning on a custom theme that was created using the Plazmic® Content Developer's Kit. |
Is Theme Data Allowed |
Disallowed |
Prevent users from unlocking their BlackBerry devices using a BlackBerry® Smart Card Reader and an authentication password. |
Is Access to the User Authenticator API Allowed |
Disallowed |
Limiting user control of third-party applications on BlackBerry devices
Scenario |
Example policy rule |
Value |
|---|---|---|
Prevent third-party applications from accessing serial ports or USB ports on BlackBerry® devices. |
Allow Third Party Apps to Use Serial Port (IT policy rule) |
No |
Prevent third-party applications from accessing the persistent store API on BlackBerry devices. |
Allow Third Party Apps to Use Persistent Store (IT policy rule) |
No |
Prevent users from configuring and running add-in applications in the BlackBerry® Desktop Manager. |
Desktop Allow Desktop Add-Ins (IT policy rule) |
No |
Prevent users from downloading third-party applications or themes to their BlackBerry devices. |
Disallow Third Party Application Downloads (IT policy rule) |
Yes |
Prevent users from removing a third-party Java® application installed on their BlackBerry devices. |
Disposition (application control policy rule) |
Required |
Prevent users from installing a third-party Java application on their BlackBerry devices. |
Disposition (application control policy rule) |
Disallowed |
Remove a third-party Java application from BlackBerry devices over the wireless network. |
Disposition (application control policy rule) |
Disallowed |
Prevent users from turning on a custom theme that was created using the BlackBerry® Theme Studio. |
Is Theme Data Allowed (application control policy rule) |
Required |
Prevent users from unlocking their BlackBerry devices using a BlackBerry® Smart Card Reader and an authentication password. |
Is Access to the User Authenticator API allowed (application control policy rule) |
Required |
Prevent users that are authenticating through a VPN connection from using third-party applications on their BlackBerry devices. |
Is Access to the User Authenticator API allowed (application control policy rule) |
Required |