Original PDF Flash format blackberry-enterprise-server-versions-4.1.3,-4.1.4,-4.1.5-  


Blackberry Enterprise Server Versions 4.1.3, 4.1.4, 4.1.5

DSD’S ConSumer GuiDe
BLACKBERRY ENTERPRISE SERVER
VERSIONS 4.1.3, 4.1.4, 4.1.5 & 4.1.6
Product Description
The BlackBerry enterprise Server is a software application that resides on a general purpose computer
within an enterprise. The BlackBerry enterprise Server provides a secure wireless extension of the enterprise
messaging environment as wel as centralised management and control of enterprise BlackBerry devices by
means of the BlackBerry infrastructure. BlackBerry enterprise Server core functionality includes:
• Communication with the enterprise mail server
• Secure communication with BlackBerry devices
• remote management of BlackBerry devices
• Wireless email messaging
• Wireless personal information management (Pim) items synchronisation
Scope of Common Criteria Certification
The scope of the Common Criteria (CC) certification included the fol owing security functionality:
• Secure communication with the enterprise mail server
• Secure communication with BlackBerry devices
• remote management of BlackBerry devices
• Wireless email messaging and Pim data synchronisation
The evaluated configuration consisted of the fol owing software packages:
• BlackBerry enterprise Server for iBm Lotus Domino Version 4.1.3 (4.1.3 bundle 37) executing on microsoft
Windows Server 2003 Service Pack 1.
• BlackBerry enterprise Server for microsoft exchange Version 4.1.3 (4.1.3 bundle 37) executing on
microsoft Windows Server 2003 Service Pack 1.
• BlackBerry enterprise Server for novel GroupWise Version 4.1.3 (4.1.3 bundle 47) executing on microsoft
Windows Server 2003 Service Pack 1.
• BlackBerry enterprise Server for iBm Lotus Domino Version 4.1.4 (4.1.4 bundle 24) executing on microsoft
Windows Server 2003 Service Pack 1.
• BlackBerry enterprise Server for microsoft exchange Version 4.1.4 (4.1.4 bundle 25) executing on
microsoft Windows Server 2003 Service Pack 1.
• BlackBerry enterprise Server for novel GroupWise Version 4.1.4 (4.1.4 bundle 155) english variant
executing on microsoft Windows Server 2003 Service Pack 2.
• BlackBerry enterprise Server for iBm Lotus Domino Version 4.1.5 (4.1.5 bundle 79) english variant
executing on microsoft Windows Server 2003 Service Pack 2.
• BlackBerry enterprise Server for microsoft exchange Version 4.1.5 (4.1.5 bundle 79) english variant
executing on microsoft Windows Server 2003 Service Pack 2.
• BlackBerry enterprise Server for iBm Lotus Domino Version 4.1.6 (4.1.6 bundle 38) english variant
executing on microsoft Windows Server 2003 Service Pack 2.
• BlackBerry enterprise Server for microsoft exchange Version 4.1.6 (4.1.6 bundle 30) english variant
executing on microsoft Windows Server 2003 Service Pack 2.
• BlackBerry enterprise Server for novel GroupWise Version 4.1.6 (4.1.6 bundle 65) english variant
executing on microsoft Windows Server 2003 Service Pack 2.
Common Criteria Certification Summary

The product has met the requirements of the Common Criteria evaluation Assurance Level (eAL) 2 augmented
with basic flaw remediation (ALC_FLR.1).
DSD’s Cryptographic Evaluation

Since the product employs cryptography, DSD performed a cryptographic evaluation on the product in addition
to the Common Criteria certification.
DSD was able to confirm the correct implementation of encryption for data in transit. It was noted that data
transmitted between a BlackBerry device and a BeS is encrypted using AeS.
DSD’s Recommendations
As the BlackBerry messaging solution has been evaluated to eAL2 with a DSD cryptographic evaluation, it can
be used to downgrade the requirements for data in transit. As such, the product can be used in accordance
with the information and Communications Technology Security manual (iSm) for the transit of information of
classifications:
• reSTriCTeD
• IN-CONFIDENCE (excluding CABINET-IN-CONFIDENCE)
• UNCLASSIFIED
Since filtering of messages was not in the scope of evaluation, the BlackBerry solution can only be
connected to networks of classifications:
• reSTriCTeD
• IN-CONFIDENCE (excluding CABINET-IN-CONFIDENCE)
• UNCLASSIFIED
Additional Resources
Agencies wishing to deploy the BlackBerrry solution should refer to the iSm policy on electronic mail Security
and electronic mail - Protective marking Policy.
DSD provides a hardening guide for the BlackBerry solution. DSD recommends that agencies consider the
implementation of as many recommendations as possible to increase the security of their deployed solution.
The Hardening Guide is not considered a compliance document however it may assist agencies in complying
with existing policies of the iSm. The hardening guide is available from the DSD web site.
Point of contact
For further information regarding the certification, cryptographic evaluation or compliance with ISM, please
contact DSD on (02) 6265 0197 or email assist@dsd.gov.au.
Information Security Manual
The advice given in this document is in accordance with iSm release date December 2008.
Australian Government agencies are reminded to check the latest release of the iSm at http;//www.dsd.gov.
au/library/infosec/ism.html.
Date of this Consumer Guide
This Consumer Guide was issued by DSD on 29 June 2009.