- CrackBerry Abuser
- 143 Posts
So is BB10 still as secure as the previous BB's now that it's not going through BIS? And other Q's
I tried searching for this but couldn't find anything directly related (even when it recommended 'similar threads' as I created this post). If there is then kindly point me to that post.
I'm just trying to understand the implications of BB10 not going through BIS anymore (as it seems to be the case).
1. Wasn't it BIS that made Blackberry's communication so encrypted and secure (outside of BES)? What happens now?
2. Wasn't it BIS that compressed the data used so that we were able to get more data use out of our phone plans than the rest? This was a big selling point for people that travelled and roamed using data a lot. What happens now? Is it compressed at all?any more or less than iphone/samsung?
3. Is BBM the only thing going through BIS on BB10, or is all of our data going through BIS on BB10, or is none of it? One of the reasons I enjoy doing mobile banking on my 9900 is because I know it's a secure connection through the BIS--as I understood. Is this no longer the case?
4. If BIS is out of the picture, what is Blackberry going to use it for (outside of BB7 devices)?
- CrackBerry User
01-31-2013, 05:53 PM #3
- 72 Posts
1. Most mail servers will used SSL/TLS to encrypted data that it sends to the phone. This was not the case many years ago. SSL certificates were very expensive.
2. You found your answer I see.
3. BBM messages would still use the Blackberry's BIS/NOC. No difference there. I am guessing you are using the 9900's web browser. The bank's website will encrypt the data to and from the phone.
4. They will us it for BBM Video Chat and many other services
I hope this helps.
- 02-08-2013, 08:44 AM #6
There is no way to tell what apps are android within Blackberry World by the way.
Sent from my SAMSUNG-SGH-I317 using Tapatalk 2
02-08-2013, 09:03 AM #7
- 870 Posts
- 02-08-2013, 09:40 AM #8
- 02-08-2013, 09:44 AM #9"Hard work spotlights the character of people: some turn up their sleeves, some turn up their noses, and some don't turn up at all." -Sam Ewing
Rollin' on Twitter
- 02-08-2013, 09:49 AM #10
I think the fips security on BB's has always been more on BES environment than the BIS environment. The one thing about bb is that it can't be rooted like the other systems. That doesn't mean that a browser attack can't happen either though, it just won't get to the OS.
- 05-03-2013, 11:18 AM #11
Last edited by naviwilliams; 05-03-2013 at 12:39 PM. Reason: one link was removed
- 05-03-2013, 11:33 AM #12
Last edited by kbz1960; 05-03-2013 at 11:56 AM.
- 05-03-2013, 11:55 AM #14
- 05-03-2013, 12:03 PM #15
- 05-03-2013, 12:16 PM #16
- 05-03-2013, 12:27 PM #17
I understand that completely.
But like I said, I'm just informing people of what's out there. I too value my security and privacy as much as anyone else when it comes to mobile phones, whether it be Blackberry, Android or IOS.
I'm not forcing you or anyone to check the links. That is totally up you.
- 05-03-2013, 12:47 PM #19
This has more up to date info.
There is an entire section of the report that covers FinSpy mobile, with technical details: https://citizenlab.org/storage/finfi...ireyesonly.pdf
Last edited by jackdagripper; 05-03-2013 at 01:07 PM.
- CrackBerry Abuser
05-03-2013, 08:50 PM #20
- 159 Posts
BES is the product that made BlackBerry secure for business and government users.. BIS also used encryption, but it was "consumer grade", and not intended for high security (there is facility for law enforcement access in BIS that does not exist in BES).
Getting rid of BIS actually increases security in some instances: if your email service supports SSL/TLS, you're actually potentially more secure than with BIS transport..
There's actually lots of information about the security measures on the BlackBerry Web site..
Posted via CB10
- CrackBerry Genius of Geniuses
05-04-2013, 02:25 AM #22
- 13,082 Posts
- CrackBerry Master
05-04-2013, 03:06 AM #23
- 1,148 Posts
8300>> 8520>> 9900>> Z10 >> Z30
- CrackBerry Addict
05-04-2013, 03:30 AM #24
- 818 Posts
Unfortunately this thread wanders a bit. Specifically, if you want to see if you are on BIS, turn off your wifi. The enter IP Address Geolocation to Identify Website Visitor's Geographical Location on the browser. It should identify you being on a rim server. In my case on my 9780, it shows me in Farmington Michigan.
On my phone, when I am on wifi, BIS is bypassed on the browser. My own ISP shows up.
If you load a 3rd party browser other than Opera, you should see the network of your carrier. I used to have Bolt on my phone, and in my case it would show me being in Los Angeles. In realty, I'm in neither location.
There is something to be said for signing up for a VPN and just being secure no matter where you are.
proXPN VPN | Get your FREE proXPN VPN account now!
has been advertising on TWIT. The price drops to a bit over $5 if you use TWIT when you sign up. Note I have no first hand experience with this provider, but the price is right. ;-) You need a fast VPN for streaming.
BTW, I noticed there is a free open source Android implementation of openVPN from code.google.com. On my TODO list is to take the APK and do a BAR conversion. I can test it on my playbook.
- CrackBerry Abuser
05-04-2013, 05:27 AM #25
- 159 Posts
In the new BB10 model, there is no BIS "scrambling": your handset talks SSL/TLS directly with your email server.. Your credentials and passwords remain only on your device and are not shared with anyone.. This is a much more secure model but the email server must support push, and because BlackBerry cannot see past the encryption, they can no longer provide compression and attachment processing..
On BES though, you do get the extra BES encryption as well as SSL/TLS, but this is enterprise grade.
And I never said anything about BIS being hacked.. That system is monitored 24/7 by BlackBerry, but just because they're never been hacked doesn't mean that the protocols that they've chosen are secure..
Posted via CB10
- By pmcilvaine in forum General BlackBerry DiscussionReplies: 10Last Post: 11-17-2009, 09:22 AM
- By knicksfan1025 in forum AT&TReplies: 15Last Post: 08-05-2009, 09:51 AM
- By knicksfan1025 in forum BlackBerry Bold 9000Replies: 4Last Post: 08-02-2009, 03:11 PM
- By Mike-D in forum BlackBerry StormReplies: 23Last Post: 03-08-2009, 12:25 PM
- By Dave88LX in forum General BlackBerry DiscussionReplies: 6Last Post: 01-21-2009, 06:34 PM