Blackberry ENTERPRISE SOLUTION SECURITY - ENFORCING ENCRYPTION OF INTERNAL AND EXTERNAL FILE SYSTEMS ON DEVICES Manual - Page 5
Browse online or download pdf Manual for Software Blackberry ENTERPRISE SOLUTION SECURITY - ENFORCING ENCRYPTION OF INTERNAL AND EXTERNAL FILE SYSTEMS ON DEVICES. Blackberry ENTERPRISE SOLUTION SECURITY - ENFORCING ENCRYPTION OF INTERNAL AND EXTERNAL FILE SYSTEMS ON DEVICES 11 pages. Enforcing encryption of internal and external file systems on blackberry devices
Print PageEnforcing encryption of internal and external file systems on BlackBerry devices
Data that BlackBerry devices encrypt by default
The BlackBerry® Enterprise Solution encrypts data traffic in transit between the BlackBerry® Enterprise Server
and the BlackBerry devices automatically. By default, the BlackBerry Enterprise Solution generates the master
encryption key and message key that the BlackBerry Enterprise Server and BlackBerry devices use to encrypt and
decrypt all data traffic between them.
For more information about how the BlackBerry Enterprise Solution encrypts data traffic in transit, see the
BlackBerry Enterprise Solution Security Technical Overview.
System requirements for file encryption on BlackBerry devices
Internal files
Java® based BlackBerry devices
that run BlackBerry® Device
Software Version 4.0 or later
Using encryption to protect stored files on BlackBerry devices
You can configure the following options on the BlackBerry Enterprise Server to turn on encryption of stored files
on supported BlackBerry devices.
Internal files
To require BlackBerry devices on
the organization's BlackBerry
Enterprise Servers to encrypt user
and application data that the
BlackBerry devices store in
internal memory using content
protection, turn on the content
protection process on BlackBerry
devices using the Content
Protection Strength IT policy rule
in the BlackBerry Manager.
©
2008 Research In Motion Limited. All rights reserved.
External files
•
BlackBerry Enterprise Server
Version 4.0 SP6 or later
•
Java based BlackBerry devices
that support external file
storage using a media card
(BlackBerry devices that run
BlackBerry Device Software
Version 4.2 or later)
External files
To require BlackBerry devices to
encrypt files stored on media
cards, turn on encryption on the
external memory cards using the
External File System Encryption
Level IT policy rule.
www.blackberry.com
Master encryption keys
•
BlackBerry Enterprise Server
Version 4.0 SP3 or later
•
Java based BlackBerry devices
that run BlackBerry Device
Software Version 4.1 or later
Master encryption keys
To require BlackBerry devices to
encrypt the master encryption
keys that they use to encrypt data
stored in internal file systems, set
the Force Content Protection of
Master Keys IT policy rule.
Note: When you turn on content
protection of master encryption
keys, the BlackBerry device uses
the same encryption key strength
that it uses to encrypt internal file
systems when encrypting the
master encryption keys.
1