Blackberry JAVA DEVELOPMENT ENVIRONMENT - - FUNDAMENTALS GUIDE Dokumentacja Pobierz pdf (Strona 10)

Attack Surface Analysis of BlackBerry Devices

Device Firewall

Firewall options can be set on the BlackBerry by going to the following menu:

Options > Security Options > Firewall

The user is then presented with the options outlined in Figure 6. On a BIS deployment, the Firewall is dis-

abled by default. However, if the Firewall is set to "Enabled", the user will subsequently be prompted before

network connections are allowed, as in Figure 5 and Figure 8. The user also has the option of blocking

incoming messages, be they SMS, MMS, PIN, or BlackBerry Internet Service (Email). Again see Figure 6.

BES Deployment

The policy options of the BES are far too numerous to go

through in detail in this document. For a comprehensive

listing see The BlackBerry Enterprise Server Policy

Reference Guide

. The policies most relevant to mitigating

malware are described below. The BES provides IT Policy

rules and Application Control rules which can be pushed

onto any BlackBerry under its control. Additionally, the

end-user still has access to the Application Permissions

and Firewall settings on the device itself. IT Policy rules

take highest precedence, followed by Application Control

Policy rules, followed by end-user settings. Note that end-

users can only increase restrictions, not lower them, under

any circumstances.

Figure 4: Permission Options Top

Figure 5: Permission Options Bottom

Figure 6: Firewall Options

1 2 ... 5 6 7 8 9 10 11 12 13 14 15 ... 38 39

Brak uwag

Blackberry JAVA DEVELOPMENT ENVIRONMENT - - FUNDAMENTALS GUIDE Dokumentacja Strona 10