Manualshelf

User guide

ManualsBrandsBlackberry ManualsComputer equipmentENTERPRISE SOLUTION SECURITY - SECURITY FOR DEVICES WITH BLUETOOTH WIRELESS TECHNOLOGY - TECHNICAL
111112113114115116117118119120
PGP public keys and PGP private keys
The PGP Support Package for BlackBerry smartphones uses public key cryptography with PGP public keys and PGP
private keys.
Key Description
PGP public key The PGP Support Package for BlackBerry smartphones uses the PGP public key
of the recipient to encrypt outgoing email messages and the PGP public key of
the sender to verify digital signatures on incoming email messages.
The PGP public key is designed so that recipients and senders can distribute
and access the key without compromising it. The PGP public key is stored
typically on the PGP Universal Server or an LDAP server.
PGP private key The PGP Support Package for BlackBerry smartphones uses the PGP private
key of the sender to digitally sign outgoing email messages and the PGP private
key of the recipient to decrypt incoming email messages.
To make sure that security is not compromised, you must make sure that private
key information remains private to the key owner. The BlackBerry device stores
the PGP private key.
Retrieving PGP keys from a PGP Universal Server or
LDAP servers
If your organization’s environment includes a PGP Universal Server, the administrator of the PGP Universal Server can
configure the email policy of the PGP Universal Server. After a user installs the PGP Support Package for BlackBerry
smartphones, a BlackBerry device can retrieve and enforce the email policy of the PGP Universal Server for all email
messages that the user sends.
The device is designed to use the BlackBerry MDS Connection Service to connect to the PGP Universal Server or any LDAP
server that a user specifies on the device or that you specify using the BlackBerry Administration Service. The BlackBerry
MDS Connection Service uses standard protocols, such as HTTP and TCP/IP, to permit the device to retrieve PGP public
keys, PGP key status, and X.509 certificate status from the PGP Universal Server or an LDAP server over the wireless
network. The
BlackBerry MDS Connection Service can connect to LDAP servers using LDAPS.
Security Technical Overview Extending messaging security to a device
117