Manualshelf

User guide

ManualsBrandsBlackberry ManualsOtherENTERPRISE SOLUTION SECURITY - ENFORCING ENCRYPTION OF INTERNAL AND EXTERNAL FILE SYSTEMS ON DEVICES
81828384858687888990
The BlackBerry device user uses the S/MIME private key to decrypt S/MIME-protected messages on the BlackBerry device and
to sign, encrypt, and send S/MIME-protected messages from the BlackBerry device. If the BlackBerry® Enterprise Server receives
an S/MIME-protected message but the BlackBerry device user did not install the S/MIME Support Package for BlackBerry
smartphones, the BlackBerry Enterprise Server sends a message to the BlackBerry device to indicate that the BlackBerry device
does not support S/MIME-protected messages.
After the BlackBerry device user installs the S/MIME Support Package for BlackBerry smartphones, the BlackBerry device user
can synchronize and manage S/MIME certificates and S/MIME private keys using the certificate synchronization tool of the
BlackBerry® Desktop Manager. The BlackBerry Enterprise Server does not apply an appended disclaimer to S/MIME-protected
messages that the BlackBerry device user sends from the BlackBerry device. Digital signatures on S/MIME-protected messages
that the BlackBerry device sends are not valid if disclaimers are appended to the messages.
To require the BlackBerry device user to use S/MIME encryption when forwarding or replying to messages, you can configure
the S/MIME Force Digital Signature IT policy rule and the S/MIME Force Encrypted Messages IT policy rule.
The S/MIME Support Package for BlackBerry smartphones is also designed to support the following features:
encoding and decoding of Unicode messages
ability to use a password, which the sender and recipient each know, to encrypt S/MIME-protected email messages or PIN
messages
ability to read S/MIME certificates that are stored on a smart card
For more information, see the S/MIME Support Package for BlackBerry Devices Security Technical Overview.
S/MIME certificates and S/MIME private keys
The S/MIME Support Package for BlackBerry® smartphones uses public key cryptography with S/MIME certificates and S/MIME
private keys to encrypt and decrypt email messages and PIN messages. The S/MIME Support Package for BlackBerry smartphones
use PKI protocols to search for and retrieve S/MIME certificates and certificate status over the wireless network.
Item Description
S/MIME certificate When a user sends an email message or PIN message from a BlackBerry device, the
BlackBerry device uses the S/MIME certificate of the recipient to encrypt the
message.
When a user receives a signed email message or signed PIN message on a
BlackBerry device, the BlackBerry device uses the S/MIME certificate of the sender
to verify the message signature. S/MIME certificates are stored on LDAP servers or
DSML certificate servers.
Security Technical Overview
Extending messaging security using S/MIME encryption
88