Welcome to the CrackBerry Forums Create Your Account or Ask a Question Answers in 5 minutes - no registration required!
Page 1 of 2 12 LastLast
Results 1 to 25 of 27
Like Tree7Likes
  1. Rayysai's Avatar
    CrackBerry Abuser

    Posts
    143 Posts
    Thread AuthorThread Author   #1  

    Default So is BB10 still as secure as the previous BB's now that it's not going through BIS? And other Q's

    Hi all,

    I tried searching for this but couldn't find anything directly related (even when it recommended 'similar threads' as I created this post). If there is then kindly point me to that post.

    I'm just trying to understand the implications of BB10 not going through BIS anymore (as it seems to be the case).

    1. Wasn't it BIS that made Blackberry's communication so encrypted and secure (outside of BES)? What happens now?
    2. Wasn't it BIS that compressed the data used so that we were able to get more data use out of our phone plans than the rest? This was a big selling point for people that travelled and roamed using data a lot. What happens now? Is it compressed at all? any more or less than iphone/samsung?
    3. Is BBM the only thing going through BIS on BB10, or is all of our data going through BIS on BB10, or is none of it? One of the reasons I enjoy doing mobile banking on my 9900 is because I know it's a secure connection through the BIS--as I understood. Is this no longer the case?
    4. If BIS is out of the picture, what is Blackberry going to use it for (outside of BB7 devices)?

    Thanks
  2. Rayysai's Avatar
    CrackBerry Abuser

    Posts
    143 Posts
    Thread AuthorThread Author   #2  

    Default

    Okay so i got the answer to #2 in the other thread re the following:

    Quote Originally Posted by EGerhardt View Post
    Synching won't use much data.

    Compression isn't making as much of a difference to your data usage as you think it is because the only things that you would want to compress can't be compressed any further than they already are. For streamed audio and video (the real data consumers) there's simply no way that just running through BIS could be compressing it. The only way to compress that kind of data is by transcoding it on the fly, and thats very CPU intensive and radically reduces quality and fundamentally its not the same file that you get on the other end. If you don't believe me, pick yourself a short video and tell WinRAR to compress it with the highest level of compression. It'll spit out a RAR the same size as the video. That kind of data just can't be compressed like that; it is already compressed as well as it can be for the data that is there. If anything, the removal of BIS should improve your browsing experience because being routed through RIMs servers means the data takes longer to move because it has more hops to navigate. That's why blackberry browsers have always felt even less competitive than the competition, because it takes an extra second or two to even start loading. That's not a specs thing, thats a BIS thing.

    As for the playbook, I can't imagine that it will make a significant difference to that. Certainly as they are upgrading the playbook to BB10, they can't have just forgotten it and will have ensured that one of the core features that sold it to a lot of us (the lack of a need for a separate data line) has stayed intact.
  3. willie44's Avatar
    CrackBerry User

    Posts
    80 Posts
    #3  

    Default

    1. Most mail servers will used SSL/TLS to encrypted data that it sends to the phone. This was not the case many years ago. SSL certificates were very expensive.
    2. You found your answer I see.
    3. BBM messages would still use the Blackberry's BIS/NOC. No difference there. I am guessing you are using the 9900's web browser. The bank's website will encrypt the data to and from the phone.
    4. They will us it for BBM Video Chat and many other services

    I hope this helps.
    Thanked by:
    Rayysai (02-04-2013) 
  4. mc177's Avatar
    CrackBerry User

    Posts
    34 Posts
    #4  

    Default

    Just a follow up question, i know maybe android is not so secure if someone decided to target you since its open source and if rooted is more vulnerable. But is the order of security now as follows: BB Legacy OS> BB10/iOS > Android?
  5. R1cowl's Avatar
    CrackBerry User

    Posts
    31 Posts
    #5  

    Default

    My question is, if there are a lot of ported Android apps in BlackBerry World does that increase the risk to my phone? Is there a way to tell which apps are android ports so I know to stay away from them?
  6. Admorris's Avatar
    CrackBerry Addict

    Posts
    692 Posts
    Global Posts
    729 Global Posts
    #6  

    Default

    Quote Originally Posted by R1cowl View Post
    My question is, if there are a lot of ported Android apps in BlackBerry World does that increase the risk to my phone? Is there a way to tell which apps are android ports so I know to stay away from them?
    I honestly would not worry too much about security (or lack thereof). Of the millions and millions of Android phones sold, the actual documented security breaches where people have had data compromised is ridiculously small...infinitesimal actually. It's just the new buzzword that Android haters use now that they rule the mobile phone world...similar to people calling the iPhone stale or calling their devoted fans "fanboys".

    There is no way to tell what apps are android within Blackberry World by the way.

    Sent from my SAMSUNG-SGH-I317 using Tapatalk 2
  7. mrfreetruth's Avatar
    Banned

    Posts
    870 Posts
    #7  

    Default

    Quote Originally Posted by Admorris View Post
    I honestly would not worry too much about security (or lack thereof). Of the millions and millions of Android phones sold, the actual documented security breaches where people have had data compromised is ridiculously small...infinitesimal actually. It's just the new buzzword that Android haters use now that they rule the mobile phone world...similar to people calling the iPhone stale or calling their devoted fans "fanboys".

    There is no way to tell what apps are android within Blackberry World by the way.

    Sent from my SAMSUNG-SGH-I317 using Tapatalk 2
    Not true. I wouldn't dare do any business on my SG3 which is why I still used a bold 9900. You have no idea how many actual security breaches are simply not documented. I know one company that had BYOD and then had a major security breach . You think they ran out to tell the world about it? It's amazing how the masses are in the dark.
    Thanked by:
    SDTRMG (05-04-2013) 
  8. Admorris's Avatar
    CrackBerry Addict

    Posts
    692 Posts
    Global Posts
    729 Global Posts
    #8  

    Default as secure as the previous BB's now that it's not going through BIS? And other Q's

    Quote Originally Posted by mrfreetruth View Post
    Not true. I wouldn't dare do any business on my SG3 which is why I still used a bold 9900. You have no idea how many actual security breaches are simply not documented. I know one company that had BYOD and then had a major security breach . You think they ran out to tell the world about it? It's amazing how the masses are in the dark.
    It's a conspiracy against BB


    And I totally agree about the masses being in the dark

    Sent from my SAMSUNG-SGH-I317 using Tapatalk 2
    dbugem and JeepBB like this.
  9. Rickroller's Avatar
    CrackBerry Genius

    Posts
    3,446 Posts
    Global Posts
    3,465 Global Posts
    PIN
    Proud contributer to The Human Fund
    #9  

    Default

    Quote Originally Posted by mrfreetruth View Post
    Not true. I wouldn't dare do any business on my SG3 which is why I still used a bold 9900. You have no idea how many actual security breaches are simply not documented. I know one company that had BYOD and then had a major security breach . You think they ran out to tell the world about it? It's amazing how the masses are in the dark.
    What was the "major" security breach?
    "Hard work spotlights the character of people: some turn up their sleeves, some turn up their noses, and some don't turn up at all." -Sam Ewing
    Rollin' on Twitter
  10. kbz1960's Avatar
    Doesn't Matter

    Posts
    71,127 Posts
    Global Posts
    71,282 Global Posts
    #10  

    Default

    I think the fips security on BB's has always been more on BES environment than the BIS environment. The one thing about bb is that it can't be rooted like the other systems. That doesn't mean that a browser attack can't happen either though, it just won't get to the OS.
    Sent from me using my fingers. Be pantless in 5K. Febreze - for more than smells.
    Posted from my phone or pc or tablet that are no better than anyone else's
    Woopie Doopie we have em fun
  11. jackdagripper's Avatar
    CrackBerry Newbie

    Posts
    9 Posts
    #11  

    Default

    This Powerful Spy Software Is Being Abused By Governments Around The World
    Read more: Countries With FinFisher Spying Software - Business Insider
    Last edited by naviwilliams; 05-03-2013 at 01:39 PM. Reason: one link was removed
  12. kbz1960's Avatar
    Doesn't Matter

    Posts
    71,127 Posts
    Global Posts
    71,282 Global Posts
    #12  

    Default

    Quote Originally Posted by jackdagripper View Post
    This Powerful Spy Software Is Being Abused By Governments Around The World
    Read more: Countries With FinFisher Spying Software - Business Insider
    So how do we know your links are not infections?
    Last edited by kbz1960; 05-03-2013 at 12:56 PM.
    Sent from me using my fingers. Be pantless in 5K. Febreze - for more than smells.
    Posted from my phone or pc or tablet that are no better than anyone else's
    Woopie Doopie we have em fun
  13. jackdagripper's Avatar
    CrackBerry Newbie

    Posts
    9 Posts
    #13  

    Default

    Quote Originally Posted by kbz1960 View Post
    So how do we know your links are infections?
    Did you mean, "not infections"? ?
  14. kbz1960's Avatar
    Doesn't Matter

    Posts
    71,127 Posts
    Global Posts
    71,282 Global Posts
    #14  

    Default

    Quote Originally Posted by jackdagripper View Post
    Did you mean, "not infections"? ?
    Yes, damn brain finger connection lol
    Sent from me using my fingers. Be pantless in 5K. Febreze - for more than smells.
    Posted from my phone or pc or tablet that are no better than anyone else's
    Woopie Doopie we have em fun
    JeepBB likes this.
  15. jackdagripper's Avatar
    CrackBerry Newbie

    Posts
    9 Posts
    #15  

    Default

    Quote Originally Posted by kbz1960 View Post
    Yes, damn brain finger connection lol
    Brain fingers...it happens....
    No their NOT infections. Why would I do such a thing? Only trying to inform people of what is out there. Not saying it will happen to you or anyone else, but the possibilities do exist.
    Thanked by:
    Julius Leee (05-03-2013) 
  16. kbz1960's Avatar
    Doesn't Matter

    Posts
    71,127 Posts
    Global Posts
    71,282 Global Posts
    #16  

    Default

    Quote Originally Posted by jackdagripper View Post
    Brain fingers...it happens....
    No their NOT infections. Why would I do such a thing? Only trying to inform people of what is out there. Not saying it will happen to you or anyone else, but the possibilities do exist.
    I'm not saying they are. Just you're a new member, or don't post often. Tend to be the ones people don't trust.
    Sent from me using my fingers. Be pantless in 5K. Febreze - for more than smells.
    Posted from my phone or pc or tablet that are no better than anyone else's
    Woopie Doopie we have em fun
  17. jackdagripper's Avatar
    CrackBerry Newbie

    Posts
    9 Posts
    #17  

    Default

    I understand that completely.
    But like I said, I'm just informing people of what's out there. I too value my security and privacy as much as anyone else when it comes to mobile phones, whether it be Blackberry, Android or IOS.
    I'm not forcing you or anyone to check the links. That is totally up you.
    kbz1960 likes this.
  18. iamivanwilliams's Avatar
    Distinguished

    Posts
    12,778 Posts
    Global Posts
    15,494 Global Posts
    #18  

    Default

    I removed the Spy Files link(s). This article is so old, and I think we've probably moved on technology wise and security wise, too, since 2011...
  19. jackdagripper's Avatar
    CrackBerry Newbie

    Posts
    9 Posts
    #19  

    Default

    Quote Originally Posted by naviwilliams View Post
    I removed the Spy Files link(s). This article is so old, and I think we've probably moved on technology wise and security wise, too, since 2011...
    True...it's probably built into the BB10 software by now.

    This has more up to date info.

    There is an entire section of the report that covers FinSpy mobile, with technical details: https://citizenlab.org/storage/finfi...ireyesonly.pdf
    Last edited by jackdagripper; 05-03-2013 at 02:07 PM.
  20. f_d
    f_d is offline
    f_d's Avatar
    CrackBerry Abuser

    Posts
    169 Posts
    PIN
    NEEDLE
    #20  

    Default

    BES is the product that made BlackBerry secure for business and government users.. BIS also used encryption, but it was "consumer grade", and not intended for high security (there is facility for law enforcement access in BIS that does not exist in BES).

    Getting rid of BIS actually increases security in some instances: if your email service supports SSL/TLS, you're actually potentially more secure than with BIS transport..

    There's actually lots of information about the security measures on the BlackBerry Web site..


    Posted via CB10
  21. MarsupilamiX's Avatar
    CrackBerry Genius of Geniuses

    Posts
    6,097 Posts
    #21  

    Default

    Answer:
    Dear BES admins, I need some help...

    Posted via CB10
    Future cross-platform BBM ad: "Your government not knowing that you are sexting? 0,01367123287671 cents a day."
  22. belfastdispatcher's Avatar
    CrackBerry Genius of Geniuses

    Posts
    13,978 Posts
    PIN
    27F48177
    #22  

    Default

    Quote Originally Posted by f_d View Post
    BES is the product that made BlackBerry secure for business and government users.. BIS also used encryption, but it was "consumer grade", and not intended for high security (there is facility for law enforcement access in BIS that does not exist in BES).

    Getting rid of BIS actually increases security in some instances: if your email service supports SSL/TLS, you're actually potentially more secure than with BIS transport..

    There's actually lots of information about the security measures on the BlackBerry Web site..


    Posted via CB10
    How is that more secure? BIS runs on top of the ssl/tls, it's not one or the other. n email setup I have the use ssl box ticked.


    And when was the BIS network EVER hacked?

    Posted via CB10
  23. MiSsY_'s Avatar
    CrackBerry Master

    Posts
    1,478 Posts
    #23  

    Default

    Quote Originally Posted by R1cowl View Post
    My question is, if there are a lot of ported Android apps in BlackBerry World does that increase the risk to my phone? Is there a way to tell which apps are android ports so I know to stay away from them?
    They use the Android runtime, so no there's no risk.
    No real way to tell, you could always check the link to the Dev site which might say, but sometimes you can take a pretty good guess just by having a look at the details info etc

    Posted via CB10 from my Z10
    8300 >> 8520 >> 9900 >> Z10 >> Z30
    Playbook 32GB
    Believe
  24. gariac's Avatar
    CrackBerry Master

    Posts
    1,452 Posts
    #24  

    Default

    Unfortunately this thread wanders a bit. Specifically, if you want to see if you are on BIS, turn off your wifi. The enter IP Address Geolocation to Identify Website Visitor's Geographical Location on the browser. It should identify you being on a rim server. In my case on my 9780, it shows me in Farmington Michigan.

    On my phone, when I am on wifi, BIS is bypassed on the browser. My own ISP shows up.

    If you load a 3rd party browser other than Opera, you should see the network of your carrier. I used to have Bolt on my phone, and in my case it would show me being in Los Angeles. In realty, I'm in neither location.

    There is something to be said for signing up for a VPN and just being secure no matter where you are.
    proXPN VPN | Get your FREE proXPN VPN account now!
    has been advertising on TWIT. The price drops to a bit over $5 if you use TWIT when you sign up. Note I have no first hand experience with this provider, but the price is right. ;-) You need a fast VPN for streaming.

    BTW, I noticed there is a free open source Android implementation of openVPN from code.google.com. On my TODO list is to take the APK and do a BAR conversion. I can test it on my playbook.
  25. f_d
    f_d is offline
    f_d's Avatar
    CrackBerry Abuser

    Posts
    169 Posts
    PIN
    NEEDLE
    #25  

    Default

    Quote Originally Posted by belfastdispatcher View Post
    How is that more secure? BIS runs on top of the ssl/tls, it's not one or the other. n email setup I have the use ssl box ticked.


    And when was the BIS network EVER hacked?

    Posted via CB10
    With BIS, the email relationship is essentially proxied and you do NOT get both encryptions.. BIS talks to the various mail servers on your behalf, and this portion of the connection is protected using SSL/TLS where applicable, but then it has to transmit the emails to your phone, and this connection is protected via a weak mechanism, that BlackBerry themselves advise you to only consider as "scrambled".. You are also trusting the carrier/ BlackBerry with your email credentials so that the BIS can get your emails for you.. BIS was enjoyed because the proxy relationship allowed the BIS and BlackBerry infrastructure to do the heavy lifting and give you very fast push email, data compression and things like quick PDF rendering (the BIS would intercept the attachment, run it through Acrobat and extract the content on the fly and send down text or a compressed version), but this essentially meant that BlackBerry servers were "reading" your emails before delivering..

    In the new BB10 model, there is no BIS "scrambling": your handset talks SSL/TLS directly with your email server.. Your credentials and passwords remain only on your device and are not shared with anyone.. This is a much more secure model but the email server must support push, and because BlackBerry cannot see past the encryption, they can no longer provide compression and attachment processing..

    On BES though, you do get the extra BES encryption as well as SSL/TLS, but this is enterprise grade.

    And I never said anything about BIS being hacked.. That system is monitored 24/7 by BlackBerry, but just because they're never been hacked doesn't mean that the protocols that they've chosen are secure..

    Posted via CB10
    Thanked by:
    MarsupilamiX (05-04-2013) 
    MarsupilamiX likes this.
Page 1 of 2 12 LastLast

Similar Threads

  1. Any way to get google maps to use the native carrier network, not go through BIS?
    By pmcilvaine in forum General BlackBerry Discussion
    Replies: 10
    Last Post: 11-17-2009, 10:22 AM
  2. Why is att still referred to as cingular?
    By knicksfan1025 in forum AT&T
    Replies: 15
    Last Post: 08-05-2009, 10:51 AM
  3. Why is att still referred to as cingular?
    By knicksfan1025 in forum BlackBerry Bold 9000
    Replies: 4
    Last Post: 08-02-2009, 04:11 PM
  4. So Is All This Shaking Good For The BB Storm ???
    By Mike-D in forum BlackBerry Storm
    Replies: 23
    Last Post: 03-08-2009, 01:25 PM
  5. So is McCain still using his BlackBerry?
    By Dave88LX in forum General BlackBerry Discussion
    Replies: 6
    Last Post: 01-21-2009, 07:34 PM

Posting Permissions