Manualshelf

User guide

ManualsBrandsBlackberry ManualsComputer equipmentENTERPRISE SOLUTION SECURITY - SECURITY FOR DEVICES WITH BLUETOOTH WIRELESS TECHNOLOGY - TECHNICAL
131132133134135136137138139140
Protecting a connection between a Wi-Fi
enabled device and an enterprise Wi-Fi
network
A Wi-Fi enabled BlackBerry device is designed to connect to enterprise Wi-Fi networks that use the IEEE
®
802.11
®
standard. The IEEE 802.11i standard uses the IEEE 802.1X standard for authentication and key management to protect
enterprise Wi-Fi networks. The IEEE 802.11i standard specifies that organizations must use the PSK protocol or the IEEE
802.1X
standard as the access control methods for Wi-Fi networks.
When you configure a Wi-Fi enabled device to use an enterprise Wi-Fi network, you must configure the enterprise Wi-Fi
network and device to protect all message data and application data that the BlackBerry Enterprise Server and device send
to each other. For example, to help protect data, you can configure the device to authenticate with the enterprise Wi-Fi
network before the device can access the enterprise Wi-Fi network. You can also configure the device and the enterprise
Wi-Fi network to encrypt any communication that they send to each other.
For more information about protecting an enterprise Wi-Fi network, see the documentation from your organization’s Wi-Fi
solution provider.
How a Wi-Fi enabled device can connect to
the BlackBerry Infrastructure
A Wi-Fi enabled BlackBerry device can connect directly to the BlackBerry Infrastructure over the Internet to access the
data services that a wireless service provider offers, even if UMA is not available. If UMA is available, the device can also
access the voice services. A direct connection from the device to the
BlackBerry Infrastructure is an alternative to the
connection from the device to the BlackBerry Infrastructure over the mobile network. If a user’s wireless service provider
makes UMA technology (also known as GAN technology) available, and the user subscribes to the UMA feature, the device
is designed to open an SSL connection to the GANC using an IPSec VPN tunnel over an enterprise Wi-Fi network.
The device and BlackBerry Infrastructure send all data to each other over an SSL connection. The SSL connection is
designed to encrypt the data that the device and BlackBerry Infrastructure send between each other.
Security Technical Overview Wi-Fi enabled devices
140