Manualshelf

User guide

ManualsBrandsBlackberry ManualsOtherENTERPRISE SOLUTION SECURITY - ENFORCING ENCRYPTION OF INTERNAL AND EXTERNAL FILE SYSTEMS ON DEVICES
919293949596979899100
Process flow: Sending an email message using S/MIME encryption
If a sender installs the S/MIME Support Package for BlackBerry® smartphones on a BlackBerry device, the BlackBerry device
encrypts outgoing email messages.
1. The BlackBerry device performs the following actions:
a. uses the BlackBerry MDS Connection Service to retrieve the S/MIME certificate of the recipient from the LDAP server
or DSML certificate server and verify the certificate status
b. encrypts the email message with the S/MIME certificate of the recipient or a password that the sender specifies
c. if the sender specifies a password, combines the password with random bytes to generate an encryption key that is
specific to S/MIME encryption
d. uses BlackBerry transport layer encryption to encrypt the S/MIME-encrypted message
e. sends the message that is encrypted using BlackBerry transport layer encryption and S/MIME encryption to the
BlackBerry® Enterprise Server
2. The BlackBerry Enterprise Server decrypts the BlackBerry transport layer encryption and sends the S/MIME-encrypted
message to the recipient.
3. The recipient decrypts the S/MIME-encrypted message using the S/MIME private key.
Security Technical Overview
Extending messaging security using S/MIME encryption
90