User guide
Process flow: Receiving a PGP encrypted message
If a recipient installs the PGP® Support Package for BlackBerry® smartphones on a BlackBerry device, the BlackBerry device
decrypts incoming PGP encrypted messages.
1. A sender uses the PGP technology on the email application to encrypt an email message using the PGP public key of the
recipient.
2. The BlackBerry® Enterprise Server performs the following actions:
a. retrieves the email message from the messaging server
b. uses BlackBerry transport layer encryption to encrypt the PGP encrypted message
c. sends the email message encrypted using BlackBerry transport layer encryption and PGP encryption to the BlackBerry
device
3. The BlackBerry device performs the following actions:
a. decrypts the BlackBerry transport layer encryption and stores the PGP encrypted message in the flash memory of the
BlackBerry device
b. decrypts the PGP encrypted message using the PGP private key of the recipient and displays the contents of the email
message when the recipient opens the email message on the BlackBerry device
Extending messaging security using S/MIME encryption
You can extend messaging security for the BlackBerry® Enterprise Solution and permit a BlackBerry device user to send and
receive S/MIME-protected email messages and S/MIME-protected PIN messages on a BlackBerry device.
To extend messaging security, you must instruct the BlackBerry device user to install the S/MIME Support Package for BlackBerry®
smartphones on the BlackBerry device and to transfer the S/MIME private key of the BlackBerry device user to the BlackBerry
device. The S/MIME Support Package for BlackBerry smartphones is designed to work with email applications such as Microsoft®
Outlook®, Microsoft Outlook Express, and IBM® Lotus Notes®, and with PKIs such as Netscape®, Entrust Authority™ Security
Manager version 5 and later, and Microsoft certification authorities.
Security Technical Overview
Extending messaging security using S/MIME encryption
87