BlackBerry Enterprise Solution
Appendix B: TLS and WTLS standards that the RIM Crypto API supports
The TLS and WTLS protocol cipher suite components that the RIM Crypto API supports apply only to WTLS and
handheld (direct) mode TLS/SSL on the BlackBerry device.
The RIM Crypto API implementation of the TLS and WTLS protocols supports the use of RSA and DSA public key
algorithms and the DH key exchange algorithm, with the following limitations:
Cipher suite type
Typical component limitation (in bits)
•
export
•
•
non export
•
Note: These limitations are due to computational constraints on the BlackBerry
device.
Key establishment algorithm cipher suites that the RIM Crypto API supports
Direct mode SSL
RSA_EXPORT
DH_anon_EXPORT
DHE_DSS_EXPORT
RSA
DHE_DSS
DH_anon
www.blackberry.com
RSA and DH: 1024 bits or less
EC: 163 bits or less
non elliptic curve operations: 4096 bits
elliptic curve operations: 571 bits
Direct mode TLS
RSA_EXPORT
DH_anon_EXPORT
DHE_DSS_EXPORT
RSA
DHE_DSS
DH_anon
WTLS
RSA_anon
RSA_anon_512
RSA_anon_768
RSA
RSA_512
RSA_768
DH_anon
DH_anon_512
DH_anon_768
72