[ISN] Fraunhofer SIT certifies BlackBerry security
InfoSec News
alerts at infosecnews.org
Tue Dec 2 01:29:01 CST 2008
http://www.heise-online.co.uk/news/Fraunhofer-SIT-certifies-BlackBerry-security--/112084
heise online UK
27 November 2008
Two years ago, the Fraunhofer Institute for Secure Information
Technology (SIT) in Darmstadt presented the first results of a study
commissioned by Research in Motion (RIM). Now the certification and the
accompanying research report are available. Fraunhofer SIT has
reconfirmed that no hidden functions or backdoors were found, and
neither RIM nor any third parties have access to the data within the
architecture.
The certification, which is valid until the end of 2010, is valuable as
a marketing tool. A close look at the report is especially recommended
for companies that already use BlackBerry smartphones. Starting on page
23, for example, SIT suggests a number of measures that increase the
architecture’s security and were applied in the certified configuration.
Some of these measures include using a firewall to separate the
attachment service from other parts of the enterprise server, using AES
instead of 3DES, and not saving master encryption keys on the message
server.
[...]
More information about the ISN
mailing list