01-16-2008, 01:50 PM
BBF War Game Mod
Join Date: Oct 2006
Location: Denver CO
PIN: SEEKRIT innit
Post Thanks: 9
Thanked 29 Times in 23 Posts
Content protection strength
Taken from the info regarding a policy item on my BES
Specify whether or not content protection is turned on by selecting the cryptography strength that the BlackBerry device uses to encrypt content that it receives while it is locked.
When content protection is turned on, BlackBerry device content is always protected with the 256 bit AES encryption algorithm. If the BlackBerry device is locked when it receives content, the BlackBerry device randomly generates the content protection key (a 256 bit AES encryption key) and an ECC key pair, derives an ephemeral 256 bit AES encryption key from the BlackBerry device password, and uses the ephemeral key to encrypt the content protection key and the ECC private key.
Strong: Provides good security and performance. This setting is adequate for most situations.
Stronger: Provides better security, but slower performance. If you use this setting, RIM recommends that you set the Minimum Password Length IT policy rule to 12 characters.
Strongest: Provides the best security, but with the slowest performance. If you use this setting, RIM recommends that you request that the user set a password of at least 21 characters.
Note: Set this rule to prioritize either encryption strength or decryption time. When the BlackBerry Enterprise Server decrypts the message using the BlackBerry device master encryption key, it uses the ECC public key in the decryption operation first, followed by a 256 bit AES decryption operation. The ECC decryption operation adds time to the decryption process.
Rule dependency: The BlackBerry device uses this IT policy rule only if the Password Required rule is set to True.
Note: If you do not set this rule, the BlackBerry Enterprise Server does not force content protection on the BlackBerry device; if the user enables content protection on the BlackBerry device, it forces the Strong setting, which is the Default setting.
This rule applies only to Java-based BlackBerry devices version 4.0.0 and higher.
: Infrastructure Architect, Denver CO