Blackberry S-MIME SUPPORT PACKAGE VERSION 4.1 - Guia de Instalação descarregar pdf (Página 30)

BlackBerry Enterprise Solution Security

Protecting the BlackBerry Infrastructure connections 30

Step Action Description

6 The BlackBerry Infrastructure

sends an acceptance to the

BlackBerry Enterprise Server.

When the BlackBerry Infrastructure accepts the challenge

response, it sends a final confirmation to the BlackBerry Enterprise

Server to complete the authentication process and set up an

authenticated SRP connection between the BlackBerry

Infrastructure and the BlackBerry Enterprise Server. If the

BlackBerry Infrastructure rejects the response, the connection fails

and SRP ends the authentication session.

BlackBerry Router protocol authentication

The BlackBerry Router is designed to bypass the SRP authenticated connection to the BlackBerry Infrastructure

to route data to BlackBerry devices that are connected to the BlackBerry Device Manager through a physical

connection to a desktop computer. Data between the BlackBerry devices and the BlackBerry Router is

compressed and encrypted.

You can install the BlackBerry Router on a remote computer to route data traffic between the BlackBerry

Infrastructure and one or more BlackBerry Enterprise Servers. The BlackBerry device must authenticate itself to

the BlackBerry Enterprise Server to prove that it knows the master encryption key before the BlackBerry Router

sends data to the BlackBerry device.

When the BlackBerry Router protocol authentication is successful, the BlackBerry device sends data to the

BlackBerry Router through the BlackBerry Device Manager, and the BlackBerry Router sends data to the

BlackBerry device through the BlackBerry Device Manager. When the user disconnects the BlackBerry device

from the desktop computer or closes the BlackBerry Device Manager, the wireless data flow over the SRP

connection is restored.

BlackBerry Router protocol authentication process

Step Action Description

1 A user physically connects a BlackBerry

device to a desktop computer.

The user connects the BlackBerry device to a desktop

computer that is running the BlackBerry Device

Manager.

2 The BlackBerry Router authenticates the

BlackBerry device.

The BlackBerry Router uses its unique authentication

protocol to verify that the BlackBerry device has the

correct master encryption key. The value of the master

encryption key that the BlackBerry device and the

BlackBerry Enterprise Server share is not available to

the BlackBerry Router.

The BlackBerry Enterprise Server and the BlackBerry

device use the same authentication information to

validate each other that the SRP authentication

handshake sequence uses to determine whether or not

the BlackBerry Enterprise Server can connect to the

BlackBerry Infrastructure.

Wireless enterprise activation authentication

Wireless enterprise activation enables a user to activate a BlackBerry device on the BlackBerry Enterprise Server

without a physical connection to a desktop computer. You can use wireless enterprise activation to implement a

large number of BlackBerry devices remotely.

Wireless enterprise activation produces a master encryption key that authenticates a user and secures the

communication between the BlackBerry Enterprise Server and the BlackBerry device. The BlackBerry Enterprise

Server and the BlackBerry device use an initial key establishment protocol that makes use of SPEKE to bootstrap

www.blackberry.com

1 2 ... 25 26 27 28 29 30 31 32 33 34 35 ... 51 52

Comentários a estes Manuais

Sem comentários

Blackberry S-MIME SUPPORT PACKAGE VERSION 4.1 - Guia de Instalação Página 30

Comentários a estes Manuais

Manuais e produtos relacionados com Software Blackberry S-MIME SUPPORT PACKAGE VERSION 4.1 -