How BlackBerry Security Begins At The Endpoints

Security

106477332
Modern IT systems are extremely complex and securing them can be very difficult. BlackBerry works with a wide variety of systems and services, from BlackBerry 10 to Android to the Internet of Things. So how does BlackBerry secure them all? It all starts at the endpoints.

Mobile devices serve as the main endpoints for enterprise mobility. These smartphones and tablets have evolved immensely over the past few years, with power and functionality quickly approaching that of a desktop computer. Consider that the new BlackBerry Passport features a Quad-Core 2.2 GHz CPU, 3GB of RAM, a 13 MP camera that can record full 1080p video, and hundreds of thousands of apps through BlackBerry World and the Amazon Appstore for Android.

The power and complexity of mobile devices highlights the need for integrated security. But while most people focus on the OS, the security of BlackBerry is actually embedded in the hardware. Let’s take a closer look.

Securing BlackBerry

Every building needs a solid foundation and the tallest buildings need the strongest foundations. In security, we call this the “Root of Trust”. The deeper down the Root of Trust is embedded into the system, the more difficult it is to compromise.

BlackBerry signs all of its hardware to ensure device integrity. The keys are injected at manufacturing and verified whenever the devices connect to the BlackBerry network. The keys are also used to verify the software of the device.

Hardware Root of Trust is the foundation of BlackBerry security. Every single time any BlackBerry device in the world boots up, it goes through a complex and unique series of checks to confirm the integrity of each component:

  1. The CPU Embedded Boot ROM verifies the digital signature of the Boot ROM.
  2. The Boot ROM verifies the signing key of the Operating System.
  3. The Operating System verifies the hash of the Base File System.
  4. The Base File System verifies the hashes of all loaded Applications.

Untitled

 

Securing Android

Nearly two years ago, BlackBerry 10 introduced the ability to securely run Android apps using the Android Player. BlackBerry 10.2.1 added the ability to install any APK file, and starting with BlackBerry 10.3, the OS comes pre-loaded with the Amazon Appstore for Android. Using BlackBerry’s Hardware Root of Trust and Trend Micro’s expertise on mobile malware, we’re able to run Android apps without compromising user privacy or device security (see this blog post for all of the details).

In addition to managing Android and iOS with BES 12 and Secure Work Space, BlackBerry recently announced a new partnership with Samsung to provide end-to-end security for Android devices. By combining the trusted EMM of BES 12 with the security of Samsung KNOX, we’re able to provide a tightly integrated, highly secure solution for the Android platform.

Securing The Future

In the past two months alone, we’ve seen Sony Pictures turn to BlackBerry for security and President Obama (a proud BlackBerry user) propose new legislation to protect user privacy. As technology moves towards embedded devices and the Internet of Things, privacy and security will only become more critical to governments, enterprises and consumers. By providing a trusted hardware platform with secure endpoints, BlackBerry will continue to lead the market in mobile privacy and security.

As always, feel free to comment below or Tweet using #BBSecurity.

About Alex Manea

Alex Manea is the Director of BlackBerry Security. He is a founding member of the group that has made BlackBerry synonymous with mobile security. Alex has looked after BlackBerry product security for over 9 years, including BlackBerry smartphones, BES and BBM. He is a Certified Software Security Lifecycle Professional and has an Honors degree in Systems Design Engineering from the University of Waterloo.

Join the conversation

Show comments Hide comments
+ -
  • http://blogs.blackberry.com Eric Lai

    Reblogged this on Inside BlackBerry.

  • http://ratermob.com/blackberry-details-how-security-is-embedded-in-its-hardware/ BlackBerry Details How Security Is Embedded In Its Hardware | ratermob

    […] Manea, Manager of Security Services at BlackBerry, explains the concept of “Root of Trust.” Is easy terms it is the strongest foundation for a tall […]

  • http://101bestblackberryapps.com/blog/blackberry/blackberry-highlights-how-security-is-embedded-in-their-hardware/ BlackBerry highlights how security is embedded in their hardware | 101 Best BlackBerry Apps

    […] what exactly that means, Alex Manea, Manager of Security Services at BlackBerry over at the Inside BlackBerry Biz Blog has laid it out in a way that’s easy to […]

  • http://bb10qnx.de/2015/02/die-blackberry-sicherheit-beginnt-bei-den-wurzeln/ Die BlackBerry Sicherheit beginnt bei den Wurzeln | BB10QNX.de

    […] Quelle […]

  • http://www.techmobile7.com/how-blackberry-security-begins-at-the-endpoints/ How BlackBerry Security Begins At The Endpoints | Tech Mobile 7

    […] Originally posted on Inside BlackBerry for Business Blog: […]

  • http://www.techmobile7.com/blackberry-highlights-how-security-is-embedded-in-their-hardware/ BlackBerry highlights how security is embedded in their hardware | Tech Mobile 7

    […] what exactly that means, Alex Manea, Manager of Security Services at BlackBerry over at the Inside BlackBerry Biz Blog has laid it out in a way that’s easy to […]

  • http://bizblog.blackberry.com/2015/02/blackberry-secure-prod-bundle/ Secure Your Work Three Times Over: The BlackBerry Secure Productivity Bundle | | Inside BlackBerry for Business Blog

    […] The BlackBerry Classic, of course, packed with productivity features in a device that marries the innovation you need, with the familiarity you love, in a package that is secure to the lowest layer. […]

  • http://bizblog.blackberry.com/2015/02/bes12-android-for-work/ MDM Update | BES12 Supports Google’s Android for Work | Inside BlackBerry for Business Blog

    […] or in the cloud, and will be supported by BlackBerry’s gold standard of mobile security, scalable architecture and trusted network […]

  • http://blogs.blackberry.com/2015/03/introducing-blackberry-experience/ Introducing the Cross-Platform BlackBerry Experience Suite | Inside BlackBerry

    […] BlackBerry’s successful cross-platform strategy of complementing the company’s innovative and ultra-secure hardware with software solutions – think BlackBerry Hub, aka the solution to ‘Messaging’s Mission […]

  • http://blogs.blackberry.com/2015/03/meet-blackberry-leap/ Meet the New 5-Inch HD BlackBerry Leap | Inside BlackBerry

    […] is paramount in our digital landscape. You can feel safe in the knowledge that BlackBerry Leap, like all BlackBerry 10 devices, was designed with the highest standards of security in mind to protect your privacy. It is […]

  • http://bizblog.blackberry.com/2015/03/the-latest-in-mobile-health-new-telemedicine-app-on-blackberry-will-allow-remote-patient-monitoring/ Telemedicine App on BlackBerry Will Allow Remote Patient Monitoring | Inside BlackBerry for Business Blog

    […] opinion sharing between patients, doctors, specialists and peripheral hospitals, all through the security of the BlackBerry platform. It uses BBM Video to enable video sessions between the clinical staff, the patient and the […]

  • http://bbugmy.com/news/video-hands-on-look-at-the-blackberry-leap/ VIDEO : Hands-On Look at the BlackBerry Leap | BlackBerry User Group Malaysia

    […] is paramount in our digital landscape. You can feel safe in the knowledge that BlackBerry Leap, like all BlackBerry 10 devices, was designed with the highest standards of security in mind to protect your privacy. It is […]

  • http://bizblog.blackberry.com/2015/04/yahoo-one-time-passwords-interesting-for-consumers-but-what-do-enterprises-need/ Yahoo One-Time Passwords For Consumers, But What Do Enterprises Need? | Inside BlackBerry for Business Blog

    […] “While only leveraging a single factor (something you have – your phone), the security of the system will depend on how secure that device remains over time” That security, must start at the mobile device level; the endpoint. […]

  • http://bizblog.blackberry.com/2015/05/myth-security-has-to-be-complicated/ Bursting the Myth that Security has to be Complicated | | Inside BlackBerry for Business Blog

    […] market over the past year. But no matter how much things change, one thing will stay the same: the underlying security of BlackBerry that makes these mobile experiences simple and easy to […]

  • http://bizblog.blackberry.com/2015/05/ever-wonder-how-blackberry-secures-its-proprietary-network/ Ever Wonder How BlackBerry Secures its Proprietary Network? | Inside BlackBerry for Business Blog

    […] remember that security is only as strong as its weakest link. While security starts at the endpoints, those endpoints need to be designed and delivered in a secure environment and the data needs to […]

  • http://bizblog.blackberry.com/2015/05/blackberry-ust-win-aecus-innovation-award/ BlackBerry and UST Global Win Aecus Innovation Award for Mobile Telemedicine App | BlackBerry and UST Global Win Aecus Innovation Award | Inside BlackBerry for Business Blog

    […] opinion sharing between patients, doctors, specialists and peripheral hospitals, all through the security of the BlackBerry platform. It uses BBM Video to enable video sessions between the clinical staff, the patient and the […]

  • http://bizblog.blackberry.com/2015/07/hey-cio-six-reasons-to-check-out-the-budget-friendly-secure-blackberry-leap/ Hey CIO! Six Reasons to Check Out the Budget-Friendly, Secure BlackBerry Leap | Inside BlackBerry for Business Blog

    […] the BlackBerry Leap is equipped with full encryption support and built-in malware protection, and designed with only the highest of security standards in mind, making it a perfect choice for regulated organizations in particular. It allows employees to back […]

  • https://manjubhat.wordpress.com/2015/09/28/blackberry-android-phone/ BlackBerry Security Android Phone | No fluff, just stuff...that matters.
  • http://blogs.blackberry.com/2015/10/priv-is-for-private-how-blackberry-secures-the-android-platform/ PRIV is for Private: How BlackBerry Secures the Android Platform | Inside BlackBerry

    […] BlackBerry’s Hardware Root of Trust, a unique manufacturing process that injects cryptographic keys into the device hardware, providing a secure foundation for the entire platform. […]

  • http://crazyworlds.org/come-blackberry-ha-reso-sicuro-android-con-il-suo-priv/ Come BlackBerry ha reso sicuro Android con il suo Priv | Crazyworlds

    […] ha inotre applicato a Priv il Hardware Root of Trust, un processo di produzione che imprime una chiave crittografica nell’hardware; Verified Boot […]

  • http://9to5google.com/2015/10/20/how-blackberry-secured-android-with-priv/ This is how BlackBerry managed to secure Android with the PRIV | 9to5Google

    […] BlackBerry’s Hardware Root of Trust, a unique manufacturing process that injects cryptographic keys into the device hardware, providing a secure foundation for the entire platform. […]

  • http://www.androidauthority.com/blackberry-priv-android-security-privacy-650465/ How does the BlackBerry PRIV manage to keep Android secure?

    […] BlackBerry’s Hardware Root of Trust, a unique manufacturing process that injects cryptographic keys into the device hardware, providing a secure foundation for the entire platform. […]

  • http://androidnext.it/2015/10/21/come-blackberry-ha-reso-sicuro-android-con-il-suo-priv/ Come BlackBerry ha reso sicuro Android con il suo Priv | AndroidNext

    […] ha inotre applicato a Priv il Hardware Root of Trust, un processo di produzione che imprime una chiave crittografica nell’hardware; Verified […]

  • http://andropet.com/?p=19473 How does the BlackBerry PRIV manage to keep Android secure? | andropet

    […] BlackBerry’s Hardware Root of Trust, a unique manufacturing process that injects cryptographic keys into the device hardware, providing a secure foundation for the entire platform. […]

  • http://www.locurasgeek.com/how-does-the-blackberry-priv-manage-to-keep-android-secure/ How does the BlackBerry PRIV manage to keep Android secure? - LocurasGeek - Tecnologia e Internet y Juegos

    […] BlackBerry’s Hardware Root of Trust, a unique manufacturing process that injects cryptographic keys into the device hardware, providing a secure foundation for the entire platform. […]

blog comments powered by Disqus