User guide

ManualsBrandsBlackberry ManualsOtherENTERPRISE SOLUTION SECURITY - ENFORCING ENCRYPTION OF INTERNAL AND EXTERNAL FILE SYSTEMS ON DEVICES

101

102

103

104

105

106

107

108

109

110

Feature Description

BlackBerry transport layer encryption BlackBerry transport layer encryption is designed to encrypt messages that the

BlackBerry device and the BlackBerry Enterprise Server send between each other

after they open an authenticated connection.

direct access to the BlackBerry®

Infrastructure over a Wi-Fi connection

Direct access to the BlackBerry Infrastructure over a Wi-Fi connection permits Wi-

Fi enabled BlackBerry devices to access BlackBerry services over the Internet, even

if UMA is not available.

You can verify with your organization's wireless service provider that your

organization's service plan supports access to BlackBerry services over a Wi-Fi

connection.

encrypted communication over the Wi-

Fi network

BlackBerry devices support multiple security methods that are designed to encrypt

communication over the enterprise Wi-Fi network between the BlackBerry device

and wireless access points or a network firewall on the enterprise Wi-Fi network.

expanded groups of Wi-Fi and VPN

configuration settings

Expanded groups of Wi-Fi and VPN configuration settings permit you to control Wi-

Fi connections from BlackBerry devices.

limited connections Wi-Fi enabled BlackBerry devices are designed to reject incoming connections, to

support limited connections in infrastructure mode only, and to prevent ad-hoc

mode (also known as peer-to-peer) connections.

multiple Wi-Fi and VPN profiles Multiple Wi-Fi and VPN profiles are designed to address user requirements in a

variety of different environments.

proxy server The BlackBerry device supports the use of a transparent proxy server that you can

configure between the enterprise Wi-Fi network and the BlackBerry device.

software token provisioning Software token provisioning is designed to permit you to provision and manage the

seed for software token authentication (for example, for VPN connections) centrally

on BlackBerry devices.

The BlackBerry Enterprise Server is designed to work with the RSA® Authentication

Manager to provide software token support for use with layer 2 and layer 3

authentication on supported BlackBerry devices.

user-specific configuration settings and

IT policy rules

User-specific configuration settings and IT policy rules are designed to simplify the

configuration of user-specific Wi-Fi and VPN information (such as user IDs and

passwords).

wireless backup of Wi-Fi and VPN

profiles

Wireless backup of Wi-Fi and VPN profiles on BlackBerry devices over a Wi-Fi

connection permits users to restore the profiles, if necessary.

Security Technical Overview

Security features of a Wi-Fi enabled BlackBerry device

103