Approvals and Certifications

As a market leader in the area of information assurance and compliance, Research In Motion Limited (RIM) is committed to independent, third party approvals and certifications of BlackBerry® security. The BlackBerry® Enterprise Solution has been approved for storing and transmitting sensitive data by the North Atlantic Treaty Organization (NATO) as well as government organizations in the United States, Canada, the United Kingdom, Austria, Australia and New Zealand.

RIM is active in the Cryptographic Module Validation Program in North America, United Kingdom CESG Assisted Product Service (CAPS) and International Common Criteria evaluation scheme.

• Government Approvals

  Government Approvals

  The BlackBerry Enterprise Solution has been approved for storing and transmitting sensitive data by several major government organizations.

  Nation	Organization	Maximum Classification Level
  Canada	Communications Security Establishment	PROTECTED B
  United Kingdom	CESG	RESTRICTED / IL3
  Austria	Center for Secure Information Technology	Not specified
  Australia	Defense Signals Directorate	RESTRICTED
  New Zealand	Government Communications Security Bureau	RESTRICTED
  United States	National Institute of Standards and Technology	Sensitive But Unclassified
  Turkey	Turkish Standards Institute	Not specified
• NATO Approval

  NATO Approval

  NATO has approved the BlackBerry Enterprise Solution for the storage and transmission of data up to and including the NATO RESTRICTED classification.
• Cryptographic Module Validation Program

  Cryptographic Module Validation Program

  The Cryptographic Module Validation Program (CMVP) governs the conformance testing of cryptographic modules to Federal Information Processing Standard (FIPS) 140-2, "Security Requirements for Cryptographic Modules." The following BlackBerry cryptographic modules have earned FIPS 140-2 or FIPS 140-1 validations through the CMVP:

  BlackBerry Tablet Cryptographic Kernel

  The BlackBerry Tablet Cryptographic Kernel is the software module that provides the cryptographic functionality required for basic operation of the BlackBerry® PlayBook™. All BlackBerry PlayBook tablets contain the BlackBerry Tablet Cryptographic Kernel, which has been awarded the following FIPS 140-2 validation:

  • FIPS 140-2 validation certificate no. 1578 - applicable to BlackBerry Tablet OS version 1.0

  BlackBerry Cryptographic Kernel

  The BlackBerry Cryptographic Kernel is the cryptographic module that provides the core cryptographic services required for BlackBerry smartphone functionality. All Java® enabled BlackBerry smartphones* contain the BlackBerry Cryptographic Kernel, which has been awarded the following FIPS 140-2 validations:

  • FIPS 140-2 validation certificate no. 1669 - applicable to BlackBerry OS versions 7.0 and 7.1
  • FIPS 140-2 (Level 3) Validation Certificate no. 1575 - applicable to BlackBerry Smart Card Reader version 2.0
  • FIPS 140-2 Validation Certificate no. 1454 - applicable to BlackBerry Device Software version 6.0
  • FIPS 140-2 Validation Certificate no. 1252 - applicable to BlackBerry Device Software version 5.0
  • FIPS 140-2 Validation Certificate no. 1146 - applicable to BlackBerry Device Software versions 4.7.0 and 4.7.1
  • FIPS 140-2 Validation Certificate no. 1083 - applicable to BlackBerry Device Software versions 4.6.0 and 4.6.1
  • FIPS 140-2 Validation Certificate no. 986 - applicable to BlackBerry Device Software version 4.5.0
  • FIPS 140-2 Validation Certificate no. 939 - applicable to BlackBerry Device Software version 4.3.0
  • FIPS 140-2 Validation Certificate no. 827– applicable to BlackBerry Device Software versions 4.2.1 and 4.2.2
  • FIPS 140-2 Validation Certificate no. 791– applicable to BlackBerry Device Software version 4.2.0 and BlackBerry Smart Card Reader Software versions 1.5.0 and 1.5.1
  • FIPS 140-2 Validation Certificate no. 593– applicable to BlackBerry Device Software version 4.1.0
  • FIPS 140-2 Validation Certificate no. 500 – applicable to BlackBerry Device Software version 4.0 and BlackBerry Smart Card Reader Software version 1.0
  • FIPS 140-2 Validation Certificate no. 360 – applicable to BlackBerry Device Software versions 3.6.1 – 3.7.1
  • FIPS 140-2 Validation Certificate no. 357 – applicable to BlackBerry Device Software v3.6.0
  • FIPS 140-2 Validation Certificate no. 312 – applicable to BlackBerry Device Software versions 3.3.0 and 3.3.1

  BlackBerry Enterprise Server Cryptographic Kernel

  The BlackBerry® Enterprise Server Cryptographic Kernel is the cryptographic module that provides the cryptographic services required for BlackBerry Enterprise Server functionality. The BlackBerry Enterprise Server Cryptographic Kernel has been awarded the following FIPS 140-2 validations:

  • FIPS 140-2 Validation Certificate no. 1237 – applicable to BlackBerry Enterprise Server versions 5.0.2 and 5.0.3
  • FIPS 140-2 Validation Certificate no. 591 – applicable to BlackBerry Enterprise Server versions 4.1.0 – 4.1.7, 5.0.0, & 5.0.1
  • FIPS 140-2 Validation Certificate no. 496 – applicable to BlackBerry Enterprise Server version 4.0
  • FIPS 140-2 Validation Certificate no. 445 – applicable to BlackBerry Enterprise Server version 3.6

  BlackBerry Cryptographic API (Algorithm implementations only)

  The BlackBerry Cryptographic Application Programming Interface (API) is a suite of comprehensive cryptographic functionality provided by all Java enabled BlackBerry smartphones. Available for use by third party BlackBerry application developers, the implementations of cryptographic algorithms in the BlackBerry Cryptographic API have been awarded validation certificates for the following:

  • BlackBerry Device Software versions 4.0 – 5.0.0
• CAPS Security Program

  CAPS Security Program

  CESG is the United Kingdom National Technical Security Authority. The CESG Assisted Product Service (CAPS) has been designed to help private sector companies develop cryptographic products for use by the United Kingdom government and other appropriate organizations. BlackBerry has been approved for use at RESTRICTED (IL3), when configured and used in line with CESG guidance. This approval is based on a CAPS-style evaluation. The following products have been evaluated and approved:

  • BlackBerry Smartphone versions 5.0, 6.0
  • BlackBerry Enterprise Server versions 5.0.1+
  • BlackBerry Smart Card Reader Software versions 2.0

  If you are using a software version older than those listed above, RIM recommends updating to one of the listed versions.
• Common Criteria Evaluation Scheme

  Common Criteria Evaluation Scheme

  The Common Criteria is an international evaluation scheme of IT security products and systems. Common Criteria evaluation results are recognized by 26 countries, including Australia, Canada, France, Germany, the United Kingdom and the United States of America. The following BlackBerry products have obtained a Common Criteria EAL 2+ certification:

  • BlackBerry Device Software versions 4.1.0 – 4.7.1
  • BlackBerry Enterprise Server versions 4.1.3 – 4.1.6

  The BlackBerry Enterprise Solution is the first wireless platform to earn Common Criteria EAL 4+ certification. The following BlackBerry products have obtained EAL 4+ certification:

  • BlackBerry Device Software version 7
  • BlackBerry Device Software version 6
  • BlackBerry Enterprise Server version 5.0
  • BlackBerry Enterprise Server Express version 5.0 – 5.02
  • BlackBerry Enterprise Server for Domino versions 5.0 – 5.02