Manualshelf

User guide

ManualsBrandsBlackberry ManualsComputer equipmentENTERPRISE SOLUTION SECURITY - SECURITY FOR DEVICES WITH BLUETOOTH WIRELESS TECHNOLOGY - TECHNICAL
919293949596979899100
a uses a shared secret password (also known as the communication password) and the ECDH protocol with a 521-bit
curve to create a device transport key
b uses the device transport key to create two encryption keys and two HMAC-SHA-256 keys
c uses one encryption key and one HMAC key to encrypt and authenticate data that BlackBerry Desktop Software
version 4.2 or later sends over the communication channel to the BlackBerry Enterprise Solution components that
share the communication password
The BlackBerry inter-process protocol uses one encryption key and one HMAC key to encrypt and authenticate data that
BlackBerry Desktop Software version 4.2 receives over the communication channel from the application loader tool or
Roxio Media Manager.
How the BlackBerry Collaboration Service
connects to an instant messaging server
and collaboration clients on devices
The BlackBerry Collaboration Service is designed to connect to an instant messaging server and the collaboration clients
on BlackBerry devices. If your organization’s instant messaging server is Microsoft Office Live Communications Server
2005 or Microsoft Office Communications Server 2007, the BlackBerry Collaboration Service connects to the Microsoft
Office Communicator Web Access server using HTTPS or HTTP.
Protecting your organization’s resources
when using BlackBerry MDS Connection
Service integrated authentication
You can configure the BlackBerry MDS Connection Service to support Integrated Windows authentication so that
BlackBerry device users can access the intranet or shared files from the BlackBerry Browser or the Files application on
devices. By default, if you configure the BlackBerry MDS Connection Service and users access the intranet or a shared file,
the users must authenticate with your organization’s domain controller by providing their Microsoft Active Directory
account passwords. In BlackBerry Enterprise Server 5.0 SP2, you can configure the BlackBerry MDS Connection Service
so that users are not required to type a password each time they want to access a resource.
If you configure the BlackBerry MDS Connection Service to support Integrated Windows authentication, the BlackBerry
MDS Connection Service
uses the Kerberos protocol and constrained delegation to help protect your organization’s
Security Technical Overview Protecting communications in your organization's environment
94