Bulletproof Mobile Security, Backed by Decades of Experience
BlackBerry® offers the gold standard in security with the experience and certifications to back it up. For several decades BlackBerry has led the mobile industry in security, pioneering secure mobile messaging. Through research and development, as well as strategic acquisitions, BlackBerry has built on this heritage. With secure connectivity via the BlackBerry Infrastructure, only BlackBerry can deliver end-to-end security without the need for open firewall ports or VPN.
The BlackBerry® Dynamics Secure Mobility Platform delivers proven containerization and Mobile Application Management built on decades of experience by the people who invented containerization.
With BlackBerry® Workspaces, BlackBerry extends security to content, pervasively applying DRM policies to documents no matter where they go.
Many vendors claim to be secure. Only BlackBerry can prove it.
End-to-End Corporate Data Protection
BlackBerry continuously innovates new approaches for mobile security to uniquely protect the 3 C’s of corporate data – content, credentials and configurations. Military-grade AES-256 encryption ensures data is always protected on the device, across the mobile network and all the way into your corporate infrastructure.
BlackBerry solutions enable organizations to comply with stringent multi-national regulatory requirements. In fact, BlackBerry is the only cross-platform mobile collaboration solution to achieve Common Criteria EAL4+ for both iOS and Android, providing the highest level of security in the market.
BlackBerry provides Common Criteria Certified applications, including the Common Criteria Certified BlackBerry Dynamics Platform for building your own secure applications.
Security Across All Devices
While BlackBerry pioneered mobile security with its own devices, including the world’s most secure Android smartphones, today BlackBerry provides enterprise-grade solutions across all common mobile devices. From Mobile Device Management (MDM) policies with BlackBerry® UEM to secure containerization with BlackBerry Dynamics and content security with BlackBerry® Workspaces, every BlackBerry solution works on your choice of end-points including iOS®, Android™, Windows®, Windows Phone®, Mac OS® X, BlackBerry® and wearables.
You get more flexibility around devices and ownership policies, while protecting your most important asset—your business data.
The Innovator and Leader
BlackBerry defined security on the mobile device. From pioneering mobile messaging to inventing mobile containerization, BlackBerry has always led the market with new and innovative ways to protect corporate data on mobile devices.
In fact, BlackBerry was the only company to receive the highest scores in all 6 use cases of the Gartner Critical Capabilities for High-Security Mobility Management Report.
Proven in the Most Demanding Environments
BlackBerry mobile security solutions are deployed, tested and trusted in many of the world’s largest and most demanding mobile environments with the highest security restrictions. Many of these organizations have also done extensive pen testing of BlackBerry solutions, and are using them in mission-critical environments, including:
- Over half of the Fortune 100
- 16 of the G20 governments
- 100% of the F100 Commercial Banks1
- 10 of the 10 largest law firms1
- All of the 5 largest oil and gas companies1
- 9 of 11 F100 Insurance Companies
- 6 of 7 F100 Healthcare Providers
- 100% of F100 Aerospace and Defense Firms
Tested and Certified
BlackBerry security solutions have been independently certified for some of the most demanding customers in government, defense, intelligence agencies, regulated industries, and large enterprises.
BlackBerry certifications include:
- 80+ Security Certifications - more than any other mobile vendor
- Federal Risk and Authorization Management Program (FedRAMP) Authorization (BlackBerry AtHoc)
- Common Criteria EAL-4+ (Good Work)
- Common Criteria EAL-4+ (Good for Enterprise)
- UK CESG Configuration Guidance
- U.S. NIST FIPS 140-2 validated encryption
- ISO 19790
- Australia Defense Signals Directorate EPL 4
- U.S. Department of Defense Android STIG and iOS STIG
- U.S. Army Certificate of Networthiness (CON)
- CAPS Security Program
- APPROVED BY NATO for classified communications up to "Restricted" level - BES10 and BlackBerry 10 smartphones were the first to receive this approval
Government and NATO approvals
NATO has approved the BlackBerry® Enterprise Solution for the storage and transmission of data up to and including the NATO RESTRICTED classification.
The BlackBerry Enterprise Solution has been approved for storing and transmitting sensitive data by several major government organizations.
Nation Organization Maximum Classification Level Canada Communications Security Establishment PROTECTED B United Kingdom CESG RESTRICTED / IL3 Austria Center for Secure Information Technology Not specified Australia Defense Signals Directorate RESTRICTED New Zealand Government Communications Security Bureau RESTRICTED United States National Institute of Standards and Technology Sensitive but unclassified Turkey Turkish Standards Institute Not specified
The Cryptographic Module Validation Program (CMVP) governs the conformance testing of cryptographic modules to Federal Information Processing Standard (FIPS) 140-2, "Security Requirements for Cryptographic Modules."
The following products use FIPS validated cryptographic modules:
- In-market BlackBerry smartphones
- BlackBerry UEM
- BlackBerry Secure Work Space
The following BlackBerry cryptographic modules have earned FIPS 140-2 or FIPS 140-1 validations through the CMVP:
BlackBerry Cryptographic Java Module
The BlackBerry® Cryptographic Java Module is a software module that provides cryptographic services to BlackBerry® products such as BlackBerry UEM, BES12, and other BlackBerry® products. The BlackBerry Java Module has been awarded the following FIPS 140-2 validation:
BlackBerry Linux Kernel Cryptographic Module
The BlackBerry Linux Kernel Cryptographic Module is a software-only external Linux Kernel module that provides general-purpose cryptographic services to the remainder of the kernel. The BlackBerry Linux Kernel Cryptographic Module expands the secure capabilities and features BlackBerry is known for, to devices running operating systems other than the BlackBerry OS.
- FIPS Validation certificate #2728 - applicable to Priv devices running BlackBerry Android.
BlackBerry Cryptographic Tool Kit
The BlackBerry Cryptographic Tool Kit is a standards-based cryptographic toolkit that supports optimized Elliptic Curve Cryptography and provides application developers with sophisticated tools to flexibly integrate encryption, digital signatures and other security mechanisms into both mobile and server-based applications. The BlackBerry Cryptographic Tool Kit, part of the suite of BlackBerry cryptographic modules, provides application developers with a means to expand the secure capabilities and features BlackBerry is known for, to devices running operating systems other than BlackBerry OS.
- FIPS Validation certificate #2402 - applicable to devices running BlackBerry Android with our BlackWidow release = Mercury.
BlackBerry OS Cryptographic Library
The BlackBerry OS Cryptographic Library is a software module that provides the cryptographic functionality required for secure operation of the BlackBerry® PlayBook™ and devices running the BlackBerry® 10 OS. The BlackBerry OS Cryptographic Library has been awarded the following FIPS 140-2 validation:
- FIPS 140-2 Validation Certificate no. 1578 - applicable to BlackBerry Tablet OS version 1.0 and 2.0, and BlackBerry OS version 10
BlackBerry Cryptographic Kernel
The BlackBerry Cryptographic Kernel is the cryptographic module that provides the core cryptographic services required for BlackBerry smartphone functionality. All Java® enabled BlackBerry smartphones contain the BlackBerry Cryptographic Kernel, which has been awarded the following FIPS 140-2 validations:
- FIPS 140-2 Validation Certificate no. 1669 (PDF) - applicable to BlackBerry OS versions 7.0 and 7.1
- FIPS 140-2 Validation Certificate no. 1454 (PDF) - applicable to BlackBerry® Device Software version 6.0
- FIPS 140-2 Validation Certificate no. 1252 - applicable to BlackBerry Device Software version 5.0
View FIPS 140-2 validations for BlackBerry Device Software versions earlier than 5.0
- FIPS 140-2 Validation Certificate no. 1146 - applicable to BlackBerry Device Software versions 4.7.0 and 4.7.1
- FIPS 140-2 Validation Certificate no. 1083 - applicable to BlackBerry Device Software versions 4.6.0 and 4.6.1
- FIPS 140-2 Validation Certificate no. 986 - applicable to BlackBerry Device Software version 4.5.0
- FIPS 140-2 Validation Certificate no. 939 - applicable to BlackBerry Device Software version 4.3.0
- FIPS 140-2 Validation Certificate no. 827 - applicable to BlackBerry Device Software versions 4.2.1 and 4.2.2
- FIPS 140-2 Validation Certificate no. 791 - applicable to BlackBerry Device software version 4.2.0 and BlackBerry® Smart Card Reader Software versions 1.5.0 and 1.5.1
- FIPS 140-2 Validation Certificate no. 593 - applicable to BlackBerry Device Software version 4.1.0
- FIPS 140-2 Validation Certificate no. 500 - applicable to BlackBerry Device Software version 4.0 and BlackBerry Smart Card Reader software version 1.0
- FIPS 140-2 Validation Certificate no. 360 - applicable to BlackBerry Device Software versions 3.6.1–3.7.1
- FIPS 140-2 Validation Certificate no. 357 - applicable to BlackBerry Device Software v3.6.0
- FIPS 140-2 Validation Certificate no. 312 - applicable to BlackBerry Device Software versions 3.3.0 and 3.3.1
BlackBerry Cryptographic Library
The BlackBerry® Cryptographic Library is a software module that provides cryptographic services to many BlackBerry® desktop products such as the BlackBerry® Enterprise Server, BlackBerry® Desktop Software, and many other BlackBerry® products. The BlackBerry Cryptographic Library has been awarded the following FIPS 140-2 validations:
BlackBerry Enterprise Server Cryptographic Kernel
The BlackBerry® Enterprise Server Cryptographic Kernel is the cryptographic module that provides the cryptographic services required for BlackBerry Enterprise Server functionality. The BlackBerry Enterprise Server Cryptographic Kernel has been awarded the following FIPS 140-2 validations:
- FIPS 140-2 Validation Certificate no. 591 – applicable to BlackBerry Enterprise Server versions 4.1.0–4.1.7, 5.0.0 and 5.0.1
- FIPS 140-2 Validation Certificate no. 496 – applicable to BlackBerry Enterprise Server version 4.0
- FIPS 140-2 Validation Certificate no. 445 – applicable to BlackBerry Enterprise Server version 3.6
BlackBerry Smartcard Reader
The BlackBerry Smart Card Reader for BlackBerry devices is an accessory that, when used in proximity to certain Bluetooth(R) enabled BlackBerry devices and computers, integrates smart card use with the BlackBerry Enterprise Solution, letting users authenticate with their smart cards to log in to Bluetooth enabled BlackBerry devices and computers.
- FIPS 140-2 Validation Certificate no. 1575 – applicable to BlackBerry® Smart Card Reader version 2.0
BlackBerry Cryptographic Library for Secure Work Space
The BlackBerry Cryptographic Library for Secure Work Space is a software The BlackBerry Cryptographic Library for Secure Work Space is a software module that provides cryptographic services required for secure operation of non-BlackBerry® devices running supported operating systems, when used in conjunction with BlackBerry® MDM solutions.
- FIPS 140-2 Validation Certificate no. 2110 – applicable to BlackBerry® Enterprise Service 10 - BlackBerry Universal Device Service and BlackBerry Enterprise Service 12
BlackBerry Cryptographic API (Algorithm implementations only)
The BlackBerry Cryptographic Application Programming Interface (API) is a suite of comprehensive cryptographic functionality provided by all Java® enabled BlackBerry smartphones. Available for use by third-party BlackBerry application developers, the implementations of cryptographic algorithms in the BlackBerry Cryptographic API have been awarded validation certificates for the following:
- BlackBerry® Device Software versions 4.0–6.0
CAPS Security Program
CESG is the United Kingdom National Technical Security Authority. The CESG Assisted Product Service (CAPS) has been designed to help private sector companies develop cryptographic products for use by the United Kingdom government and other appropriate organizations. BlackBerry has been approved for use at RESTRICTED (IL3), when configured and used in line with CESG guidance. This approval is based on a CAPS-style evaluation.
The following products have been evaluated and approved:
- BlackBerry smartphone versions 5.0, 6.0, 7.0 and 7.1
- BlackBerry® Enterprise Server versions 5.0.1, 5.0.2, and 5.0.3
- BlackBerry® Smart Card Reader Software version 2.0
If you’re using a software version older than those listed above, BlackBerry recommends updating to one of the listed versions.
Common Criteria Evaluation Scheme
The Common Criteria is an international evaluation scheme of IT security products and systems. Common Criteria evaluation results are recognized by 26 countries, including Australia, Canada, France, Germany, the United Kingdom and the United States of America. The following BlackBerry products have obtained a Common Criteria EAL 2+ certification:
- BlackBerry Device Software versions 4.1.0–4.7.1 (PDF)
- BlackBerry Enterprise Server versions 4.1.3–4.1.6 (PDF)
The BlackBerry Enterprise Solution is the first wireless platform to earn Common Criteria EAL 4+ certification. The following BlackBerry products have obtained EAL 4+ certification:
- BlackBerry® Device Software version 7 (PDF)
- BlackBerry® Device Software version 6 (PDF)
- BlackBerry Enterprise Server version 5.0 (PDF)
- BlackBerry® Enterprise Server Express version 5.0–5.02 (PDF)
- BlackBerry® Enterprise Server for IBM® Lotus® Domino® versions 5.0–5.02 (PDF)
- BlackBerry® Enterprise Server for Microsoft® Exchange version 5.0.3 (PDF)
- BlackBerry Enterprise Server for IBM Lotus Domino version 5.0.3 (PDF)
The following BlackBerry products have achieved Common Criteria certification in conformance with the National Information Assurance Partnership (NIAP) Protection Profiles listed below:
- Protection Profile for Mobile Device Fundamentals
- Extended Package for Mobile Device Management Agents
Accordion CSS - White Txt
1 As of February 2014
2 As of November 2013