Blackberry JAVA DEVELOPMENT ENVIRONMENT - - FEATURE AND TECHNICAL Uživatelský manuál stáhnout pdf (Strana 51)

Item Description

tasks

• subject

• information included in the body of tasks

Protection of master encryption keys on locked BlackBerry devices

If you turn on content protection of master encryption keys, BlackBerry® devices use grand master keys to encrypt the master

encryption keys that are stored in flash memory, and the BlackBerry devices store the decrypted grand master keys in RAM.

When you, a user, or the password timeout locks a BlackBerry device, the BlackBerry device continues to receive data and does

not free the memory that is associated with the grand master key. If the BlackBerry device is locked and receives data that is

encrypted with a master encryption key, the BlackBerry device uses the decrypted grand master key to decrypt the required

master encryption key that is stored in flash memory and receive the data.

Controlling BlackBerry device access to the BlackBerry Enterprise Server

To control which BlackBerry® devices can connect to the BlackBerry® Enterprise Server, you can turn on the Enterprise Service

Policy. After you turn on the Enterprise Service Policy, by default, the BlackBerry Enterprise Server prevents connections from

new BlackBerry devices that you associate with the BlackBerry Enterprise Server and permits connections from BlackBerry devices

that you previously activated on the BlackBerry Enterprise Server. The Enterprise Service Policy also applies to devices with

BlackBerry® Connect™ software or BlackBerry® Built-In™ software, and devices that are running the BlackBerry® Application

Suite.

You can use the Enterprise Service Policy to create allowed lists that control the BlackBerry devices that users can activate on a

BlackBerry Enterprise Server, over the wireless network, or over a serial connection. BlackBerry devices that match the criteria

that you specify in the allowed list can complete the activation process on the BlackBerry Enterprise Server.

You can define individual BlackBerry device PINs and a range of BlackBerry device PINs as types of criteria in the allowed lists.

You can also control access to the BlackBerry Enterprise Server based on specific manufacturers and models of BlackBerry devices.

The BlackBerry Administration Service includes lists of permitted manufacturers and models based on the properties of the

BlackBerry devices that are already associated with the BlackBerry Enterprise Server. You can clear items in the allowed lists to

prevent further connections by BlackBerry devices of a specific manufacturer or model.

You can permit a specific user to override the Enterprise Service Policy so that the user can connect to the BlackBerry Enterprise

Server even if the user's BlackBerry device matches the criteria for BlackBerry devices to exclude.

Managing BlackBerry device security over the wireless network using IT administration

commands

You can control BlackBerry® devices remotely to protect confidential information using IT administration commands.

Feature and Technical Overview

BlackBerry Enterprise Solution security

1 2 ... 46 47 48 49 50 51 52 53 54 55 56 ... 116 117

Žádné komentáře

Blackberry JAVA DEVELOPMENT ENVIRONMENT - - FEATURE AND TECHNICAL Uživatelský manuál Strana 51