Manualshelf

User guide

ManualsBrandsBlackberry ManualsOtherENTERPRISE SOLUTION SECURITY - ENFORCING ENCRYPTION OF INTERNAL AND EXTERNAL FILE SYSTEMS ON DEVICES
111112113114115116117118119120
EAP-FAST authentication
EAP-FAST authentication uses PAC to open a TLS connection to a Wi-Fi® enabled BlackBerry® device and verify the supplicant
credentials of the BlackBerry device over the TLS connection.
The BlackBerry device supports EAP-MS-CHAPv2 and EAP-GTC as second-phase protocols during EAP-FAST authentication so
that the BlackBerry device can exchange authentication credentials with the enterprise Wi-Fi network. The BlackBerry device
supports using automatic PAC provisioning with EAP-FAST authentication only.
For more information about EAP-FAST authentication, see RFC 4851.
EAP-SIM authentication
EAP-SIM authentication uses a GSM® SIM card to authenticate a Wi-Fi® enabled BlackBerry® device with an enterprise Wi-Fi
network and distribute session keys. EAP-SIM authentication uses a challenge-response method without mutual authentication.
The BlackBerry device supports using EAP-SIM authentication with the credentials on the GSM SIM card only. The user is not
required to type or select credentials on the BlackBerry device.
The user identity that EAP-SIM uses for authentication on the BlackBerry device is built from IMSI using the 3GPP® technical
specification 3GPP-TS-23.003.
The BlackBerry device can receive at least two challenges from the authentication server to provide stronger authentication.
For more information about EAP-SIM authentication, see RFC 4186.
Encryption keys that a Wi-Fi enabled BlackBerry device supports for use with
layer 2 security methods
A Wi-Fi® enabled BlackBerry device supports AES-CCMP encryption keys, TKIP encryption keys, and WEP encryption keys.
The BlackBerry device supports the use of AES-CCMP with the following authentication methods:
EAP-FAST authentication
EAP-TLS authentication
EAP-TTLS authentication
PEAP authentication
PSK authentication
The BlackBerry device supports the use of TKIP with the following authentication methods:
EAP-FAST authentication
EAP-TLS authentication
Security Technical Overview
Encryption keys that a Wi-Fi enabled BlackBerry device supports for use with layer 2 security methods
115