Blackberry S-MIME SUPPORT PACKAGE VERSION 4.1 - Installationsanleitung PDF herunterladen (Seite 17)

BlackBerry Enterprise Solution Security

Extending BlackBerry device messaging security 17

that the BlackBerry device can decrypt messages that are encrypted using PGP. Without the PGP Support

Package, the user’s BlackBerry device receives PGP protected messages as unreadable cipher text.

Within the PGP Universal Server environment, the PGP Universal Server operates as a network appliance. PGP

Universal Server specifies secure email policies designed by the PGP Universal Server administrator. The

BlackBerry device with the PGP Support Package installed enforces compliance with those policies for all email

messages.

The PGP Support Package includes support for the following:

• PGP Universal Server

• encrypting and decrypting messages, including PIN messages, verifying digital signatures, and digitally

signing outgoing messages

• wireless fetching of PGP keys and PGP key status using either a PGP Universal Server or an external LDAP

PGP key server

The BlackBerry device is designed to connect to the PGP Universal Server and configured, external LDAP PGP

key server(s) using the BlackBerry Mobile Data System™ (BlackBerry MDS™) Connection Service (connection

service), which resides on the BlackBerry Enterprise Server®. The connection service uses a standard Internet

protocol, such as HTTP or TCP/IP, to enable the BlackBerry device to pull PGP keys and PGP key status from the

PGP Universal Server or an external LDAP PGP key server over the wireless network.

PGP security

PGP technology is designed to enable sender-to-recipient authentication and confidentiality and help maintain

data integrity and privacy from the time that the originator of the message sends it over the wireless network

until the message is decoded and read by the message recipient.

PGP technology relies on public key cryptography (using private and public key pairs) to provide confidentiality,

integrity and authenticity.

PGP key types

The PGP implementation of public key cryptography uses the following keys:

Key type Description

PGP public key The BlackBerry device uses the PGP public key to encrypt outgoing messages and verify

digital signatures on received messages. The PGP public key binds the identity and the

public cryptographic information of the PGP public key user.

Both message senders and recipients can access the PGP public key (in other words, the

PGP public key is shared).

PGP private key The BlackBerry device uses the PGP private key to digitally sign outgoing messages and

decrypt received messages.

Private key information is never publicly available.

PGP encryption

If the PGP Support Package is installed on a BlackBerry device, when a user sends a message from the

BlackBerry device, the BlackBerry device encrypts the message once with PGP encryption and once with

standard BlackBerry encryption, using the following process:

1. The BlackBerry device encrypts the message with the message recipient’s PGP public key.

2. The BlackBerry device uses standard BlackBerry encryption to encrypt the PGP data.

3. The BlackBerry device sends the encrypted data to the BlackBerry Enterprise Server.

4. The BlackBerry Enterprise Server removes the BlackBerry standard encryption and sends the PGP encrypted

message to the recipient.

www.blackberry.com

1 2 ... 12 13 14 15 16 17 18 19 20 21 22 ... 51 52

Kommentare zu diesen Handbüchern

Keine Kommentare

Blackberry S-MIME SUPPORT PACKAGE VERSION 4.1 - Installationsanleitung Seite 17

Kommentare zu diesen Handbüchern

Verwandte Produkte und Handbücher für Software Blackberry S-MIME SUPPORT PACKAGE VERSION 4.1 -