BlackBerry Forums Support Community               

Closed Thread
 
LinkBack Thread Tools
Old 03-20-2008, 04:33 AM   #1 (permalink)
New Member
 
Join Date: Mar 2008
Location: Kyiv, Ukraine
Model: 8310
PIN: 25345351
Carrier: Swisscom
Posts: 6
Post Thanks: 0
Thanked 0 Times in 0 Posts
Exclamation BES & Lotus Domino: unencrypted outgoing mail

Please Login to Remove!

We use BES & Lotus Domino

There is a problem:
  • We send an email from BlackBerry to Notes user
  • BES receives our email
  • BES puts the email into Lotus Domino server, joined with BES
  • Lotus Domino sends the email to recipient's Lotus Domino mail server
  • Recipient's mail server encrytps the email with recipient's public Notes key
  • But! Body field is still unencrypted!

As it turned out, BES doesn't mark message's Body field as needed to be encrypted, in other words BES doesn't set SEAL flag for the field.


Any ideas to workaround this security issue?

Last edited by Serhii : 03-20-2008 at 04:35 AM.
Offline  
Old 03-20-2008, 05:39 AM   #2 (permalink)
Knows Where the Search Button Is
 
Join Date: Feb 2007
Model: 8120
Carrier: O2
Posts: 46
Post Thanks: 0
Thanked 0 Times in 0 Posts
Default

Is this any help??

BlackBerry Search Results
Offline  
Old 03-20-2008, 05:51 AM   #3 (permalink)
New Member
 
Join Date: Mar 2008
Location: Kyiv, Ukraine
Model: 8310
PIN: 25345351
Carrier: Swisscom
Posts: 6
Post Thanks: 0
Thanked 0 Times in 0 Posts
Default

Quote:
Originally Posted by kerseyr View Post
Is this any help??

BlackBerry Search Results
No, this is for reading encrypted mail, not for encription of outgoing one...
Offline  
Old 03-20-2008, 06:32 AM   #4 (permalink)
Knows Where the Search Button Is
 
Join Date: Feb 2007
Model: 8120
Carrier: O2
Posts: 46
Post Thanks: 0
Thanked 0 Times in 0 Posts
Default

What about this...

Enabling Incoming Mail Encryption
If you would like to enable incoming mail encryption, complete the following steps:

Open the Public Address Book.
Open the Person document.
Click Edit Person.
In the Encrypt incoming mail field, selectYes.

Note: To disable incoming mail encryption, click Edit Person, then change the Encrypt incoming mail field to No.
Offline  
Old 04-01-2008, 01:15 PM   #5 (permalink)
New Member
 
Join Date: Mar 2008
Location: Kyiv, Ukraine
Model: 8310
PIN: 25345351
Carrier: Swisscom
Posts: 6
Post Thanks: 0
Thanked 0 Times in 0 Posts
Default

Quote:
Originally Posted by kerseyr View Post
What about this...

Enabling Incoming Mail Encryption
If you would like to enable incoming mail encryption, complete the following steps:

Open the Public Address Book.
Open the Person document.
Click Edit Person.
In the Encrypt incoming mail field, selectYes.

Note: To disable incoming mail encryption, click Edit Person, then change the Encrypt incoming mail field to No.
Actually, we enabled encryption for all users on Domino server.
The problem is that BES generate incorrect message before putting into server mail.box (it doesn't add flag of encryption to Body field). And Domino server doesn't encrypt any field without this flag!
Offline  
Old 04-01-2008, 01:32 PM   #6 (permalink)
x14
BlackBerry Extraordinaire
 
Join Date: Jul 2005
Location: NYC
Model: 9800
OS: 6.0.0.546
Carrier: AT&T
Posts: 2,344
Post Thanks: 0
Thanked 17 Times in 16 Posts
Default

AFAIK BES does not support creating Domino encrypted messages.
__________________
Exchange 2007/BES 5.0.2 MR2
Offline  
Old 04-01-2008, 01:54 PM   #7 (permalink)
New Member
 
Join Date: Mar 2008
Location: Kyiv, Ukraine
Model: 8310
PIN: 25345351
Carrier: Swisscom
Posts: 6
Post Thanks: 0
Thanked 0 Times in 0 Posts
Default

Quote:
Originally Posted by x14 View Post
AFAIK BES does not support creating Domino encrypted messages.
I do not say about creating encrypted messages on BES!
I say about incorrect structure of those messages.
Offline  
Old 04-01-2008, 01:56 PM   #8 (permalink)
New Member
 
Join Date: Mar 2008
Location: Kyiv, Ukraine
Model: 8310
PIN: 25345351
Carrier: Swisscom
Posts: 6
Post Thanks: 0
Thanked 0 Times in 0 Posts
Default

Quote:
Originally Posted by x14 View Post
AFAIK BES does not support creating Domino encrypted messages.
I do not say about creating encrypted messages on BES!
I say about incorrect structure of those messages.
Offline  
Old 05-21-2008, 05:50 PM   #9 (permalink)
BlackBerry Extraordinaire
 
noname's Avatar
 
Join Date: Sep 2005
Location: Congested Islet of "Foreign Talents" (> 45% of workforce) - Singapore.
Model: Z10
OS: 10.0.0
PIN: NUKE(PAP)
Carrier: Singtel
Posts: 1,504
Post Thanks: 6
Thanked 9 Times in 9 Posts
Thumbs down

BES' jobs are those coded in RED:
  • We send an email from BlackBerry to Notes user
  • BES receives our email
  • BES puts the email into Lotus Domino server, joined with BES
  • Lotus Domino sends the email to recipient's Lotus Domino mail server
  • Recipient's mail server encrytps the email with recipient's public Notes key
  • But! Body field is still unencrypted!

Go figure what's going on for those in BLUE.
__________________
Native but 4th class citizen of a nation governed by idiots who import congestions & contention.
Offline  
Old 05-21-2008, 07:13 PM   #10 (permalink)
Thumbs Must Hurt
 
siemp's Avatar
 
Join Date: May 2005
Location: Amsterdam
Model: 9000
Carrier: Vodafone
Posts: 65
Post Thanks: 0
Thanked 0 Times in 0 Posts
Default

I'll try a replay of your problem in my environment. Still strange. A message gets dropped by BES on the domino BES server and then routed to the users mail server. Encryption will only take place on the mail server. First thought would be that there's a problem with that mail server.

I'll get back when I've tried it myself.
Offline  
Closed Thread


Thread Tools

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

vB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On





Copyright 2004-2014 BlackBerryForums.com.
The names RIM and BlackBerry are registered Trademarks of BlackBerry Inc.