Table of Contents
Advertisement
BlackBerry Enterprise Solution
Feature
control BlackBerry device and BlackBerry
Desktop Software functionality
New security features
Feature
Allowing the S/MIME
Support Package for
BlackBerry devices to use
password-based encryption
when sending an S/MIME-
protected email or PIN
message
Allowing the PGP Support
Package for BlackBerry
devices to use PGP key-
only encryption when
sending a PGP protected
email or PIN message
Requiring authentication to
enable the BlackBerry
Device Software to permit
tools to run on BlackBerry
devices
Verifying that the RIM
bootROM is permitted to
run on BlackBerry devices
www.blackberry.com
Description
•
Send wireless commands to turn on and turn off BlackBerry
device functionality, delete information from BlackBerry
devices, and lock BlackBerry devices.
•
Send IT policies to BlackBerry devices to customize security
settings for BlackBerry device users or groups of BlackBerry
device users on a BlackBerry Enterprise Server.
•
Send application control policies to BlackBerry devices to
control third-party application availability and connections.
•
Enforce BlackBerry device and BlackBerry Smart Card
Reader passwords.
Software versions supported
•
BlackBerry Enterprise
Server Version 4.1 SP6 or
later
•
BlackBerry Device Software
Version 4.6 or later
•
BlackBerry Enterprise
Server Version 4.1 SP6 or
later
•
BlackBerry Device Software
Version 4.6 or later
•
BlackBerry Device Software
Version 4.6 or later
•
BlackBerry Enterprise
Server Version 4.1 SP6 or
later
•
BlackBerry Device Software
Version 4.6 or later
Description
On supported BlackBerry devices that have
the S/MIME Support Package for
BlackBerry devices installed and turned on,
the S/MIME Support Package for
BlackBerry devices can use a shared
password known to the message sender and
recipient to encrypt messages.
On supported BlackBerry devices that have
the PGP Support Package for BlackBerry
devices installed and turned on, the PGP
Support Package for BlackBerry devices can
use the PGP key-only, or both types of PGP
encryption, to encrypt messages.
The RIM tool authentication server enables
the BlackBerry Device Software to permit
tools to run on BlackBerry devices.
BlackBerry devices and the RIM tool
authentication server use a
challenge/response process that is
designed to authenticate communication
between them and prevent users or systems
that do not have authenticated access to
the server from using a USB connection to a
device to run tools.
When a user turns on a BlackBerry device,
the processor runs internal ROM code that
reads the RIM bootROM from flash memory
and verifies the digital signature of the
bootROM code using the public keys that
the processor stores. If the verification
process is successful, the bootROM is
permitted to run on the BlackBerry device.
If the verification process fails, the
processor stops running.
8
Advertisement
Table of Contents
