User guide

Extending messaging security
to a device
If your organization's messaging environment supports highly secure messaging technology such as PGP encryption or S/
MIME encryption, you can configure the
BlackBerry Enterprise Solution to encrypt a message using PGP encryption or S/
MIME encryption so that the message remains encrypted when the BlackBerry Enterprise Server forwards the message to
the email applications of recipients. To extend messaging security, the sender and recipient must install highly secure
messaging technology on the computers that host the email applications and on their
BlackBerry devices, and you must
configure the devices to use the highly secure messaging technology.
Extending messaging security using PGP
encryption
You can extend messaging security for the BlackBerry Enterprise Solution and permit a BlackBerry device user to send and
receive PGP protected email messages and PGP protected PIN messages on a BlackBerry device. The BlackBerry
Enterprise Solution supports the OpenPGP format and PGP/MIME format on the device.
To extend messaging security, you must instruct the device user to install the PGP Support Package for BlackBerry
smartphones on the device and to transfer the PGP private key of the device user to the device. The device user can use
the
PGP private key to digitally sign, encrypt, and send PGP protected messages from the device. If a device user does not
install the PGP Support Package for BlackBerry smartphones, the device displays an error message when the device user
tries to open PGP protected messages.
To require the device user to use PGP encryption when forwarding or replying to messages, you can configure the PGP
Force Digital Signature IT policy rule and the PGP Force Encrypted Messages IT policy rule.
The PGP Support Package for BlackBerry smartphones is designed to support encoding and decoding Unicode messages
and permits PGP encryption using keys or passwords. The PGP Support Package for BlackBerry smartphones permits the
device to encrypt PGP protected email messages or PGP protected PIN messages using a password that the sender and
recipient both know.
For more information about the OpenPGP format, see RFC 2440. For more information about the PGP/MIME format, see
RFC 3156.
15
Security Technical Overview Extending messaging security to a device
116