Friday, July 1, 2011

Blackberry Enterprise Solution Security - A Snap shot


This solution helps a blackberry user to transfer data securely from one point to another, through wireless networks. This application uses a symmetric key to encrypt the data sent between them , thereby preventing the third party wireless providers from accessing an organization’s critical data.
Blackberry Enterprise solution uses symmetric algorithm to provide and maintain the confidentiality, Integrity and authenticity of the data. This happens because, before sending a data, the blackberry client authenticates itself with the blackberry server and then only the data is transmitted. No other peer knows there is a transmission happening.

Some of the striking security features in this suite are

Data Protection
The data is protected in the transit from one device to another device by using a unique symmetric algorithm. The data is encrypted and stored in a configuration database and can be made to be accessed using a password, smart card or both.
Encryption key protection
The device is programmed to encrypt the keys stored in the device. It automatically decrypts the keys automatically when the device is locked.
Control of device connections
The suit is designed to control Bluetooth and wi-fi networks
Seamless administration
The device can be administrator by sending administrative commands to lock the device, delete user or data etc.

General Architecture


The above figure depicts the connectivity model from a centralized Blackberry Enterprise Server to the clients. The inherent connectivity may differ as the organization's requirements.