Table of Contents
Advertisement
BlackBerry Enterprise Solution
This document describes the security features of the BlackBerry® Enterprise Solution and provides an overview
of the BlackBerry security architecture.
This document describes the security features that the BlackBerry® Enterprise Server Version 4.1 SP6,
BlackBerry® Desktop Software Version 4.6, and BlackBerry® Device Software Version 4.6 support, unless
otherwise stated. To determine if a feature is supported in an earlier software version, see the documentation for
earlier versions of the BlackBerry Enterprise Server, the BlackBerry Desktop Software, and the BlackBerry Device
Software.
For the full terms substituted by the acronyms in this document, see the BlackBerry Enterprise Solution Security
Acronym Glossary.
Wireless security
Many enterprise organizations realize significant return on investments and productivity gains by extending
access to their enterprise information to mobile employees. With an increased demand for mobile content and
the threat of information theft, organizations have concerns about addressing security needs and requirements
when evaluating wireless solutions. Without an effective security model, your organization might expose
sensitive data, with financial and legal implications.
Powerful personal devices such as mobile phones and personal digital assistants can access and store sensitive
data. Controlling access to these devices is an important issue. Leaving devices with remote access to sensitive
data accessible to potentially malicious users might be dangerous.
The BlackBerry Enterprise Solution (consisting of a BlackBerry device, BlackBerry Device Software, BlackBerry
Desktop Software, and the BlackBerry Enterprise Server) is designed to protect your organization from data loss
or alteration in the event of
•
malicious interception of data on your organization's network, while a BlackBerry device user is sending and
receiving messages and accessing your organization's data over the wireless network using the BlackBerry
device
•
an attack intended to steal your organization's data, using malicious application code (for example, a virus)
•
theft of the BlackBerry device
BlackBerry Enterprise Solution security
The BlackBerry Enterprise Solution implementation of symmetric key cryptography is designed to provide
confidentiality, integrity, and authenticity implicitly.
Concept
Description
confidentiality
permits only the intended
message recipient to view
the contents of a message
integrity
enables a message
recipient to detect if a third
party altered the message
data in transit between the
message sender and the
message recipient
www.blackberry.com
BlackBerry Enterprise Solution implementation
Use encryption, which is data scrambling based on a secret
key, to make sure that only the intended recipient can view
the contents of the message.
•
Protect each message that the BlackBerry device sends
with one or more message keys comprised of random
information, which is designed to prevent third-party
decryption or alteration of the message data.
•
Enable only the BlackBerry Enterprise Server and the
BlackBerry device to know the value of the master
encryption key, recognize the format of the decrypted
and decompressed message, and automatically reject a
message either one receives that is encrypted with the
wrong master encryption key and therefore does not
produce the required message format upon decryption.
6
Advertisement
Table of Contents
