Table of Contents
Advertisement
BlackBerry Enterprise Solution
Turning off unsecured messaging
The BlackBerry Enterprise Server administrator can turn off unsecured messaging to make sure that all
communication originating at BlackBerry devices in your organization travels through the enterprise messaging
environment.
Scenario
turn off PIN messaging
turn off SMS messaging
turn off MMS messaging
Extending BlackBerry device messaging security
In addition to standard BlackBerry encryption, the BlackBerry Enterprise Server administrator can enable
S/MIME technology or PGP technology to offer an additional layer of security between the sender and recipient
of an email or PIN message. Using either one of these technologies enables sender-to-recipient authentication
and confidentiality, and helps maintain data integrity and privacy from the time that a BlackBerry device user
sends a message from the BlackBerry device until the message recipient decodes and reads the message.
PGP Support Package for BlackBerry devices
The PGP Support Package for BlackBerry devices is designed to provide support for using OpenPGP (RFC 2440)
and PGP/MIME (RFC 3156) message formatting on the BlackBerry device to enable BlackBerry device users who
already send and receive PGP protected messages in OpenPGP and PGP/MIME formats using their computer
email applications to send and receive PGP protected messages in these formats using their BlackBerry devices.
The PGP Support Package for BlackBerry devices includes tools for obtaining PGP keys and transferring them to
the BlackBerry device so that BlackBerry devices with the PGP Support Package for BlackBerry devices installed
can decrypt PGP protected messages and BlackBerry device users can read the decrypted messages on their
BlackBerry devices. Users can digitally sign, encrypt, and send PGP protected messages from their BlackBerry
devices. Without the PGP Support Package for BlackBerry devices, the BlackBerry device receives PGP protected
messages as unreadable cipher text.
Within the PGP Universal environment, the PGP Universal Server operates as a network appliance. The PGP
Universal Server specifies secure email policies that the PGP Universal Server administrator designs. The
BlackBerry device with the PGP Support Package for BlackBerry devices installed enforces compliance with the
PGP Universal secure email policies for all email messages.
The PGP Support Package for BlackBerry devices is designed to include support for the following features:
•
using the PGP Universal Server to retrieve and enforce a secure email policy
•
searching for and retrieving PGP keys, PGP key status, and X.509 certificate status over the wireless
network using either a PGP Universal Server or an external LDAP key server
•
setting the BlackBerry device to connect to external LDAP PGP key servers using SSL/TLS (LDAPS)
connections
•
encrypting and decrypting PGP protected email and PIN messages
•
allowing BlackBerry devices to use PGP key-only encryption when sending PGP protected messages from
BlackBerry devices
www.blackberry.com
Description
Set the Allow Peer-to-Peer Messages IT policy rule to False.
Note: When the BlackBerry Enterprise Server administrator turns off PIN
messaging, BlackBerry device users cannot send PIN messages from their
BlackBerry devices; however, they can still receive PIN messages on their
BlackBerry devices.
Set the Allow SMS IT policy rule to False.
Set the Disable MMS IT policy rule to True.
22
Advertisement
Table of Contents
