Installation guide

ManualsBrandsBlackberry ManualsComputer equipmentENTERPRISE SOLUTION SECURITY - SECURITY FOR DEVICES WITH BLUETOOTH WIRELESS TECHNOLOGY - TECHNICAL

BlackBerry Enterprise Solution Security

BlackBerry Enterprise Solution security 5

Concept Description BlackBerry Enterprise Solution implementation

authenticity enables the message

recipient to identify and

trust the identity of the

message sender

• Require that the BlackBerry device authenticate itself

to the BlackBerry Enterprise Server to prove that it

knows the master encryption key before the BlackBerry

Enterprise Server can exchange the unique master

encryption key with, and send data to the BlackBerry

device.

The BlackBerry Enterprise Solution is designed so that data remains encrypted (in other words, it is not

decrypted) at all points between the BlackBerry device and the BlackBerry Enterprise Server. Only the

BlackBerry Enterprise Server and the BlackBerry device have access to the data that they send between them.

Thus, third-parties, including service providers, cannot access potentially sensitive company information in a

decrypted format.

Message failure occurs automatically if the BlackBerry device cannot recognize the message format produced by

the BlackBerry Enterprise Server decryption process, or if the BlackBerry Enterprise Server receives a message

encrypted with the wrong master encryption key. If message failure occurs, the BlackBerry device prompts the

user to generate a new master encryption key (required).

BlackBerry Enterprise Solution feature Description

protect data

• Encrypt data traffic in transit between the BlackBerry

Enterprise Server and the BlackBerry device.

• Encrypt data traffic in transit between your messaging and

collaboration server and a user’s desktop email program.

• Use secure protocols to connect the BlackBerry Enterprise

Server to the BlackBerry Infrastructure.

• Encrypt data on the BlackBerry device.

• Encrypt data in the BlackBerry configuration database.

• Authenticate a user to the BlackBerry device using a smart

card with a password or passphrase.

protect encryption keys

• Encrypt encryption keys on the BlackBerry device.

control BlackBerry device connections

• Control which BlackBerry devices can connect to the

BlackBerry Enterprise Server.

• Control Bluetooth® connections to and from the BlackBerry

device.

• Control BlackBerry Smart Card Reader connections.

control BlackBerry device and BlackBerry

Desktop Software functionality

• Send wireless commands to turn on and turn off BlackBerry

device functionality, delete information from BlackBerry

devices, and lock BlackBerry devices.

• Send IT policies to customize security settings for a user or a

group on a BlackBerry Enterprise Server.

• Enforce BlackBerry device and BlackBerry Smart Card

Reader passwords.