Installation guide
BlackBerry Enterprise Solution Security
Protecting the BlackBerry Infrastructure connections 28
Configuration option Recommendations
delete unsecured, old setup
files
• Delete Microsoft SQL Server setup files that might contain plain text,
credentials encrypted with weak public keys, or sensitive configuration
information that the Microsoft SQL Server logged to a Microsoft SQL
Server version-dependent location during installation.
Note: Microsoft distributes a free tool, Killpwd, which is designed to locate
and remove passwords from unsecured, old setup files on your system. See
the Microsoft Knowledge Base article Service Pack Installation May Save
Standard Security Password in File for more information.
audit connections to the
Microsoft SQL Server
• At a minimum, log failed connection attempts to the Microsoft SQL
Server and review the log regularly.
• When possible, save log files to a different hard drive than the one on
which data files are stored.
Changing the BlackBerry configuration database
If you move the BlackBerry device to a BlackBerry Enterprise Server that uses a different BlackBerry
configuration database, you or a user must erase all user and application data, the BlackBerry device master
encryption key, and the IT policy public key from the BlackBerry device. See “Erasing data from BlackBerry
device memory and making the BlackBerry device unavailable” on page 43 for more information.
You or the user must initiate regeneration of a new, unique master encryption key. The new BlackBerry
Enterprise Server must generate a unique IT policy private and public key pair and digitally sign and send the
Default IT policy and the IT policy public key to the BlackBerry device before the BlackBerry device can
communicate with the new BlackBerry Enterprise Server.
The new BlackBerry configuration database stores the new BlackBerry Enterprise Server name and the
BlackBerry device master encryption key and IT policy private key.
BlackBerry MDS Services databases
The BlackBerry MDS Services store their database access credentials in plain text form in
INSTALL_DIR\BlackBerry MDS Services 4.1.0\jakarta-tomcat-5.5.9\conf\server.xml. To protect the access
credentials in that storage location, you must
• use a separate SQL login account to install and manage the BlackBerry MDS Services databases
• assign read and write control to that location to a separate BlackBerry MDS Services SQL login account only
See the BlackBerry Enterprise Server Installation Guide for more information.
Protecting the BlackBerry Infrastructure connections
The BlackBerry Enterprise Server is designed to communicate with the BlackBerry Infrastructure using SRP
authentication to establish a connection to the wireless network. The BlackBerry Enterprise Server contacts the
BlackBerry Infrastructure to establish an initial connection using SRP.
The BlackBerry Enterprise Server and the BlackBerry Infrastructure perform an authentication handshake when
they attempt to establish a connection. If the authentication fails, they do not establish a connection. If a
BlackBerry Enterprise Server uses the same unique SRP authentication key and unique SRP ID to connect to (and
then disconnect from) the BlackBerry Infrastructure five times in one minute, the BlackBerry Infrastructure
disables that SRP ID to prevent a malicious user using the same SRP ID (for example, to try to create a Denial of
Service condition).
After the BlackBerry Enterprise Server and the BlackBerry Infrastructure establish an initial connection over the
Internet, the BlackBerry Enterprise Server uses a persistent TCP/IP connection to send data to the BlackBerry
Infrastructure. The BlackBerry Infrastructure uses standard protocols to send data to the BlackBerry device.
www.blackberry.com