New Security Features



Similar documents
New Security Features

BlackBerry Business Cloud Services. Version: Release Notes

Release Notes. BlackBerry Web Services. Version 12.1

Compatibility Matrix. VPN Authentication by BlackBerry. Version 1.7.1

BES10 Self-Service. Version: User Guide

BlackBerry Enterprise Server Express for Microsoft Exchange

BlackBerry Enterprise Server Express for IBM Domino. October 7, 2014 Version: 5.0 Service Pack: 4. Compatibility Matrix

Compatibility Matrix BES12. September 16, 2015

Compatibility Matrix. BES12 Cloud. July 20, 2016

Compatibility Matrix. BES12 Cloud. December 14, 2015

Installation and Configuration Guide

BlackBerry Enterprise Server Express. Version: 5.0 Service Pack: 4. Update Guide

Compatibility Matrix. BlackBerry Enterprise Server for Microsoft Exchange. Version 5.0.4

Compatibility Matrix BES10. April 27, Version 10.2 and later

Integration Guide. Enterprise Identity by BlackBerry

Compatibility Matrix. BlackBerry Enterprise Server Express for Microsoft Exchange. Version 5.0.4

Compatibility Matrix March 05, 2010

BlackBerry Professional Software For Microsoft Exchange Compatibility Matrix January 30, 2009

Release Notes. BlackBerry Web Services Version 12.5

BlackBerry Enterprise Server for Microsoft Exchange. Compatibility Matrix January 31, 2011

BlackBerry Enterprise Server Resource Kit BlackBerry Analysis, Monitoring, and Troubleshooting Tools Version: 5.0 Service Pack: 2.

BlackBerry Mobile Conferencing

BlackBerry Enterprise Server for Microsoft Office 365. Version: Release Notes

Compatibility Matrix BES12. June 30, 2016

BlackBerry World Storefront. Version: 4.3. User Guide

User Guide. BES12 Self-Service

BlackBerry Enterprise Server for Microsoft Exchange. Compatibility Matrix March 25, 2013

BlackBerry Enterprise Server. BlackBerry Administration Service Roles and Permissions Version: 5.0 Service Pack: 4.

BlackBerry Mobile Voice System - BlackBerry MVS Client

BlackBerry Web Desktop Manager. Version: 5.0 Service Pack: 4. User Guide

Security Guide. BES12 Cloud

BlackBerry Desktop Manager Version: User Guide

BBM for Android. Version: 1.0. User Guide

Quick Reference. Good for Enterprise to Good Work Transition Guide

Technical Note. BlackBerry Business Cloud Services

BlackBerry Web Desktop Manager. User Guide

BlackBerry Enterprise Server Express for Microsoft Exchange

Technical Note. BlackBerry Enterprise Server for Novell GroupWise

BlackBerry 10 OS. Version:

BlackBerry Enterprise Server Wireless Software Upgrades Version: 4.1 Service Pack: 7. Administration Guide

BES12 Cloud Migration Program Description ( BES12 Cloud Migration Program Description )

Technical Note. BlackBerry Enterprise Server for Microsoft Exchange

Maintenance Release. Notes. BlackBerry Enterprise Service 10. Version: 10.2 Maintenance Release: 5

Maintenance Release. Notes. BlackBerry Enterprise Server for Microsoft Exchange. Version: 5.0 Service Pack: 4 Maintenance Release: 2

BlackBerry Enterprise Server for Microsoft Office 365. Version: 1.0. Release Notes

WATCHDOX by BlackBerry Training Services Program Description ( WATCHDOX by BlackBerry Training Services Program Description )

TERMS and CONDITIONS OF USE - NextSTEPS TM

Installation Guide. BlackBerry Enterprise Service 12. Version 12.0

PointCentral Subscription Agreement v.9.2

Terms & Conditions Template

AGREEMENT BETWEEN USER AND International Network of Spinal Cord Injury Nurses

AGREEMENT BETWEEN USER AND Global Clinical Research Management, Inc.

Installation and Administration Guide

AGREEMENT BETWEEN USER AND Caduceon Environmental Laboratories Customer Portal

The Credit Control, LLC Web Site is comprised of various Web pages operated by Credit Control, LLC.

E-Sign Disclosure & E-Statements Terms and Conditions

Accessing BlackBerry Data Services Using Wi-Fi Networks

IF YOU DO NOT AGREE TO THESE TERMS AND CONDITIONS OF USE, PLEASE DO NOT REGISTER OR USE THE SITE.

NRBN VOICE SERVICES RETAIL AGREEMENT. (9-1-1 VoIP Emergency Calling) NIAGARA REGIONAL BROADBAND NETWORK LIMITED ( NRBN ) - and -

How To Use Blackberry Cloud Services On A Blackberry Device

ADP Ambassador / Referral Rewards Program Terms and Conditions of Use

Rhea Help Desk Software End User License Agreement

Technical Help Desk Terms of Service

GitLab.com Terms GITLAB.COM TERMS

1. GRANT OF LICENSE. Formdocs LLC grants you the following rights provided that you comply with all terms and conditions of this EULA:

Terms and Conditions

BNSync User License Agreement

Rethinking Schools Limited Institutional Site License

Administration Guide. Wireless software upgrades

SAMPLE RETURN POLICY

EASTLINK PERSONAL CLOUD TERMS OF SERVICE

TERMS AND CONDITIONS

Specific Program Documentation ( License SPD )

CENTURY 21 CANADA LIMITED PARTNERSHIP WEBSITE TERMS OF USE

Self Help Guides. Setup Exchange with Outlook

BIMASS and You - A Copyright Infringement Conclusions

RockWare Click-Wrap Software License Agreement ( License )

ADP Ambassador /Referral Rewards Program. Terms and Conditions of Use

Revised 10/13 SUBSCRIBER AGREEMENT. Introduction

Service Agreement: January 2008

Self Help Guides. Create a New User in a Domain

FAX-TO- END-USER LICENSE AGREEMENT

App Terms and Conditions!

User Agreement. Quality. Value. Efficiency.

UK Vendor Website - Terms of Use Agreement

Web Site Development Agreement

SOFTWARE SUBSCRIPTION SERVICE (SaaS) AGREEMENT

All copyright, trade mark, design rights, patent and other intellectual property rights (registered or unregistered) in the Content belongs to us.

BlackBerry Enterprise Solution and RSA SecurID

Terms and Conditions

Quartz Legal Terms and Conditions

These TERMS AND CONDICTIONS (this Agreement ) are agreed to between InfluencersAtWork,

"Certification Authority" means an entity which issues Certificates and performs all of the functions associated with issuing such Certificates.

TERMS AND CONDITIONS

Transcription:

New Security Features BlackBerry 10 OS Version 10.3.2

Published: 2015-06-08 SWD-20150608104314635

Contents About this guide... 4 What's new... 4 NFC smart card support... 5 OCSP stapling support in the BlackBerry Browser... 6 Allow SSL version 3.0 in the work browser IT policy rule...7 New and updated IT policy rules... 8 New and updated BES12 IT policy rules... 8 New and updated BES12 Cloud IT policy rules...8 New and updated BES10 IT policy rules... 9 Related resources... 10 Glossary... 11 Legal notice...12

About this guide About this guide 1 This guide describes the new security features of BlackBerry 10 OS version 10.3.2. What's new The following table lists the new security features of BlackBerry 10 OS version 10.3.2: Feature Exchange ActiveSync S/MIME Description BlackBerry 10 OS version 10.3.2 introduces support for S/MIME for Exchange ActiveSync. If users have email accounts that are supported by Exchange ActiveSync and your organization uses an LDAP directory, users can encrypt their messages using S/ MIME. For more information, see the user guide for the device. NFC smart card support BlackBerry 10 OS version 10.3.2 introduces an NFC smart card driver. For more information, see NFC smart card support. OCSP stapling support in the BlackBerry Browser BlackBerry 10 OS version 10.3.2 introduces OCSP stapling support in the BlackBerry Browser. For more information, see OCSP stapling support in the BlackBerry Browser. Allow SSL version 3.0 in the work browser IT policy rule BlackBerry 10 OS version 10.3.2 introduces support for the Allow SSL version 3.0 in the work browser IT policy rule. For more information, see Allow SSL version 3.0 in the work browser IT policy rule. Changes to media card encryption on work space only devices New IT policy rules On work space only devices, if media card encryption is turned on, media card encryption now begins as soon as a media card is inserted in a work space only device instead of after a 5-minute delay. BlackBerry 10 OS version 10.3.2 introduces support for some IT policy rules that couldn't be used on devices until this release of the device software. For more information, see New and updated IT policy rules. 4

NFC smart card support NFC smart card support 2 BlackBerry 10 OS version 10.3.2 introduces an NFC smart card driver so that users can use their NFC-enabled devices to communicate with smart cards. The device and the smart card use NFC to establish a secure wireless channel between the card s contactless interface and the device. The Allow NFC IT policy rule must be selected in order for users to enable NFC on regulated BlackBerry Balance and work space only devices. 5

OCSP stapling support in the BlackBerry Browser OCSP stapling support in the BlackBerry Browser 3 BlackBerry 10 OS version 10.3.2 introduces OCSP stapling support in the BlackBerry Browser. When the Browser on a device connects to webpages that use HTTPS, OCSP stapling allows the web server to provide certificate status information that is time-stamped and signed by the CA so that the Browser doesn t need to retrieve the certificate status from the OCSP responder. This decreases the amount of time that it takes for new HTTPS webpages to load on devices and eliminates the privacy issue of allowing CAs to see what webpages the device user visits. If the Browser receives an invalid stapled response, it terminates the connection. For more information about OCSP stapling, see RFC 6066. 6

Allow SSL version 3.0 in the work browser IT policy rule Allow SSL version 3.0 in the work browser IT policy rule 4 BlackBerry 10 OS version 10.3.2 introduces support for the Allow SSL version 3.0 in the work browser IT policy rule for BlackBerry Balance, regulated BlackBerry Balance, and work space only devices. For devices that are activated on BES12 version 12.1, you can use this rule to specify whether the work browser on a device can use SSL version 3.0. When this rule is selected, a user can still use their work browser settings to prevent their work browser from using SSL version 3.0. 7

New and updated IT policy rules New and updated IT policy rules 5 BlackBerry 10 OS version 10.3.2 introduces support for some IT policy rules that couldn't be used on devices until this release of the device software. The following sections list the BES12, BES12 Cloud, and BES10 IT policy rules that can be used on devices that are running BlackBerry 10 OS version 10.3.2 and later. New and updated BES12 IT policy rules BlackBerry 10 OS version 10.3.2 introduces support for the following BES12 IT policy rules on devices: Allow non-fqdn domains as trusted domains for single sign-on authentication Allow friendly names of recent contacts Allow single sign-on authentication using Kerberos for non-fqdn domains Allow single sign-on authentication using NTLM for non-fqdn domains Allow SSL version 3.0 in the work browser Allow third-party apps to use BlackBerry Blend Allow untrusted connections to the mail server Check certificate expiry for MDM connection Email address for user requested work apps Enable NIAP Common Criteria functionality The "Allow location services" rule includes a new "Always On" option that makes sure that users can't disable location services. New and updated BES12 Cloud IT policy rules BlackBerry 10 OS version 10.3.2 introduces support for the following BES12 Cloud IT policy rules on devices: Allow non-fqdn domains as trusted domains for single sign-on authentication Allow friendly names of recent contacts Allow single sign-on authentication using Kerberos for non-fqdn domains Allow single sign-on authentication using NTLM for non-fqdn domains Allow SSL version 3.0 in the work browser Allow third-party apps to use BlackBerry Blend 8

New and updated IT policy rules Allow untrusted connections to the mail server Email address for user requested work apps The "Allow location services" rule includes a new "Always On" option that makes sure that users can't disable location services. New and updated BES10 IT policy rules BlackBerry 10 OS version 10.3.2 introduces support for the following BES10 IT policy rules on devices: Allow Friendly Names of Recent Contacts Allow Non-FQDN Domains as Trusted Domains For Single Sign-On Authentication Allow Single Sign-On Authentication Using Kerberos for Non-FQDN Domains Allow Single Sign-On Authentication Using NTLM for Non-FQDN Domains Allow Untrusted Connections to the Messaging Server Email Address for User Requested Work Apps SSL Version 3.0 in the Work Browser Third-Party App Support for BlackBerry Blend The "Location Services" rule includes a new "Always On" option that makes sure that users can't disable location services. 9

Related resources Related resources 6 Resource BES12 Security Guide for BlackBerry BES12 Cloud Security Guide for BlackBerry BlackBerry Device Service Solution Security Technical Overview Description Description of the security maintained by BES12, BES12 Cloud, or BES10, the BlackBerry Infrastructure, and BlackBerry 10 devices to protect data and connections Description of the BlackBerry 10 OS Description of how work data is protected on BlackBerry 10 devices when you use BES12, BES12 Cloud, or BES10 Description of the available activation types BES12 Policy Reference Spreadsheet BES12 Cloud Policy Reference Spreadsheet Descriptions of BES12, BES12 Cloud, or BES10 IT policy rules for BlackBerry 10 devices BlackBerry Device Service Policy Reference Spreadsheet BES12 Administration Guide BlackBerry Device Service Advanced Administration Guide Description of how to configure BES12, BES12 Cloud, or BES10 IT policy rules for BlackBerry 10 devices BlackBerry 10 Security Overview Introduction to BlackBerry 10 security Description of how BlackBerry 10 protects data at rest and in transit Description of our security platform, from the device to the BlackBerry Infrastructure 10

Glossary Glossary 7 BES10 BlackBerry Enterprise Service 10 BES12 BlackBerry Enterprise Service 12 CA FQDN HTTPS IT policy LDAP MDM NFC NIAP NTLM OCSP RFC S/MIME space SSL certification authority fully qualified domain name Hypertext Transfer Protocol over Secure Sockets Layer An IT policy consists of various rules that control the security features and behavior of devices. Lightweight Directory Access Protocol mobile device management Near Field Communication National Information Assurance Partnership NT LAN Manager Online Certificate Status Protocol Request for Comments Secure Multipurpose Internet Mail Extensions A space is a distinct area of the device that enables the segregation and management of different types of data, applications, and network connections. Different spaces can have different rules for data storage, application permissions, and network routing. Spaces were formerly known as perimeters. Secure Sockets Layer 11

Legal notice Legal notice 8 2015 BlackBerry. All rights reserved. BlackBerry and related trademarks, names, and logos are the property of BlackBerry Limited and are registered and/or used in the U.S. and countries around the world. Kerberos is a trademark of Massachusetts Institute of Technology. Microsoft, Active Directory, and ActiveSync are trademarks of Microsoft Corporation. All other trademarks are the property of their respective owners. This documentation including all documentation incorporated by reference herein such as documentation provided or made available on the BlackBerry website provided or made accessible "AS IS" and "AS AVAILABLE" and without condition, endorsement, guarantee, representation, or warranty of any kind by BlackBerry Limited and its affiliated companies ("BlackBerry") and BlackBerry assumes no responsibility for any typographical, technical, or other inaccuracies, errors, or omissions in this documentation. In order to protect BlackBerry proprietary and confidential information and/or trade secrets, this documentation may describe some aspects of BlackBerry technology in generalized terms. BlackBerry reserves the right to periodically change information that is contained in this documentation; however, BlackBerry makes no commitment to provide any such changes, updates, enhancements, or other additions to this documentation to you in a timely manner or at all. This documentation might contain references to third-party sources of information, hardware or software, products or services including components and content such as content protected by copyright and/or third-party websites (collectively the "Third Party Products and Services"). BlackBerry does not control, and is not responsible for, any Third Party Products and Services including, without limitation the content, accuracy, copyright compliance, compatibility, performance, trustworthiness, legality, decency, links, or any other aspect of Third Party Products and Services. The inclusion of a reference to Third Party Products and Services in this documentation does not imply endorsement by BlackBerry of the Third Party Products and Services or the third party in any way. EXCEPT TO THE EXTENT SPECIFICALLY PROHIBITED BY APPLICABLE LAW IN YOUR JURISDICTION, ALL CONDITIONS, ENDORSEMENTS, GUARANTEES, REPRESENTATIONS, OR WARRANTIES OF ANY KIND, EXPRESS OR IMPLIED, INCLUDING WITHOUT LIMITATION, ANY CONDITIONS, ENDORSEMENTS, GUARANTEES, REPRESENTATIONS OR WARRANTIES OF DURABILITY, FITNESS FOR A PARTICULAR PURPOSE OR USE, MERCHANTABILITY, MERCHANTABLE QUALITY, NON- INFRINGEMENT, SATISFACTORY QUALITY, OR TITLE, OR ARISING FROM A STATUTE OR CUSTOM OR A COURSE OF DEALING OR USAGE OF TRADE, OR RELATED TO THE DOCUMENTATION OR ITS USE, OR PERFORMANCE OR NON- PERFORMANCE OF ANY SOFTWARE, HARDWARE, SERVICE, OR ANY THIRD PARTY PRODUCTS AND SERVICES REFERENCED HEREIN, ARE HEREBY EXCLUDED. YOU MAY ALSO HAVE OTHER RIGHTS THAT VARY BY STATE OR PROVINCE. SOME JURISDICTIONS MAY NOT ALLOW THE EXCLUSION OR LIMITATION OF IMPLIED WARRANTIES AND CONDITIONS. TO THE EXTENT PERMITTED BY LAW, ANY IMPLIED WARRANTIES OR CONDITIONS RELATING TO THE DOCUMENTATION TO THE EXTENT THEY CANNOT BE EXCLUDED AS SET OUT ABOVE, BUT CAN BE LIMITED, ARE HEREBY LIMITED TO NINETY (90) DAYS FROM THE DATE YOU FIRST ACQUIRED THE DOCUMENTATION OR THE ITEM THAT IS THE SUBJECT OF THE CLAIM. TO THE MAXIMUM EXTENT PERMITTED BY APPLICABLE LAW IN YOUR JURISDICTION, IN NO EVENT SHALL BLACKBERRY BE LIABLE FOR ANY TYPE OF DAMAGES RELATED TO THIS DOCUMENTATION OR ITS USE, OR PERFORMANCE OR NON- PERFORMANCE OF ANY SOFTWARE, HARDWARE, SERVICE, OR ANY THIRD PARTY PRODUCTS AND SERVICES REFERENCED HEREIN INCLUDING WITHOUT LIMITATION ANY OF THE FOLLOWING DAMAGES: DIRECT, CONSEQUENTIAL, EXEMPLARY, INCIDENTAL, INDIRECT, SPECIAL, PUNITIVE, OR AGGRAVATED DAMAGES, DAMAGES FOR LOSS OF PROFITS 12

Legal notice OR REVENUES, FAILURE TO REALIZE ANY EXPECTED SAVINGS, BUSINESS INTERRUPTION, LOSS OF BUSINESS INFORMATION, LOSS OF BUSINESS OPPORTUNITY, OR CORRUPTION OR LOSS OF DATA, FAILURES TO TRANSMIT OR RECEIVE ANY DATA, PROBLEMS ASSOCIATED WITH ANY APPLICATIONS USED IN CONJUNCTION WITH BLACKBERRY PRODUCTS OR SERVICES, DOWNTIME COSTS, LOSS OF THE USE OF BLACKBERRY PRODUCTS OR SERVICES OR ANY PORTION THEREOF OR OF ANY AIRTIME SERVICES, COST OF SUBSTITUTE GOODS, COSTS OF COVER, FACILITIES OR SERVICES, COST OF CAPITAL, OR OTHER SIMILAR PECUNIARY LOSSES, WHETHER OR NOT SUCH DAMAGES WERE FORESEEN OR UNFORESEEN, AND EVEN IF BLACKBERRY HAS BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES. TO THE MAXIMUM EXTENT PERMITTED BY APPLICABLE LAW IN YOUR JURISDICTION, BLACKBERRY SHALL HAVE NO OTHER OBLIGATION, DUTY, OR LIABILITY WHATSOEVER IN CONTRACT, TORT, OR OTHERWISE TO YOU INCLUDING ANY LIABILITY FOR NEGLIGENCE OR STRICT LIABILITY. THE LIMITATIONS, EXCLUSIONS, AND DISCLAIMERS HEREIN SHALL APPLY: (A) IRRESPECTIVE OF THE NATURE OF THE CAUSE OF ACTION, DEMAND, OR ACTION BY YOU INCLUDING BUT NOT LIMITED TO BREACH OF CONTRACT, NEGLIGENCE, TORT, STRICT LIABILITY OR ANY OTHER LEGAL THEORY AND SHALL SURVIVE A FUNDAMENTAL BREACH OR BREACHES OR THE FAILURE OF THE ESSENTIAL PURPOSE OF THIS AGREEMENT OR OF ANY REMEDY CONTAINED HEREIN; AND (B) TO BLACKBERRY AND ITS AFFILIATED COMPANIES, THEIR SUCCESSORS, ASSIGNS, AGENTS, SUPPLIERS (INCLUDING AIRTIME SERVICE PROVIDERS), AUTHORIZED BLACKBERRY DISTRIBUTORS (ALSO INCLUDING AIRTIME SERVICE PROVIDERS) AND THEIR RESPECTIVE DIRECTORS, EMPLOYEES, AND INDEPENDENT CONTRACTORS. IN ADDITION TO THE LIMITATIONS AND EXCLUSIONS SET OUT ABOVE, IN NO EVENT SHALL ANY DIRECTOR, EMPLOYEE, AGENT, DISTRIBUTOR, SUPPLIER, INDEPENDENT CONTRACTOR OF BLACKBERRY OR ANY AFFILIATES OF BLACKBERRY HAVE ANY LIABILITY ARISING FROM OR RELATED TO THE DOCUMENTATION. Prior to subscribing for, installing, or using any Third Party Products and Services, it is your responsibility to ensure that your airtime service provider has agreed to support all of their features. Some airtime service providers might not offer Internet browsing functionality with a subscription to the BlackBerry Internet Service. Check with your service provider for availability, roaming arrangements, service plans and features. Installation or use of Third Party Products and Services with BlackBerry's products and services may require one or more patent, trademark, copyright, or other licenses in order to avoid infringement or violation of third party rights. You are solely responsible for determining whether to use Third Party Products and Services and if any third party licenses are required to do so. If required you are responsible for acquiring them. You should not install or use Third Party Products and Services until all necessary licenses have been acquired. Any Third Party Products and Services that are provided with BlackBerry's products and services are provided as a convenience to you and are provided "AS IS" with no express or implied conditions, endorsements, guarantees, representations, or warranties of any kind by BlackBerry and BlackBerry assumes no liability whatsoever, in relation thereto. Your use of Third Party Products and Services shall be governed by and subject to you agreeing to the terms of separate licenses and other agreements applicable thereto with third parties, except to the extent expressly covered by a license or other agreement with BlackBerry. The terms of use of any BlackBerry product or service are set out in a separate license or other agreement with BlackBerry applicable thereto. NOTHING IN THIS DOCUMENTATION IS INTENDED TO SUPERSEDE ANY EXPRESS WRITTEN AGREEMENTS OR WARRANTIES PROVIDED BY BLACKBERRY FOR PORTIONS OF ANY BLACKBERRY PRODUCT OR SERVICE OTHER THAN THIS DOCUMENTATION. BlackBerry Limited 2200 University Avenue East Waterloo, Ontario 13

Legal notice Canada N2K 0A7 BlackBerry UK Limited 200 Bath Road Slough, Berkshire SL1 3XE United Kingdom Published in Canada 14

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information