Welcome to the CrackBerry Forums Create Your Account or Ask a Question Answers in 5 minutes - no registration required!
Page 1 of 7 1234 ... LastLast
Results 1 to 25 of 174
Like Tree335Likes
  1. JerryD's Avatar
    CrackBerry User

    Posts
    15 Posts
    Thread AuthorThread Author   #1  

    Default Z10 fails corporate security test [Updated]

    I worrk for one of the big 4 Accounting companies supporting Smartphones, and have been a loyal BlackBerry user since 1999. I got devestaing news today. After waiting almost two years for a new BlackBerry and the Z10 being days from being available, I learned today that the Z10 has FAILED my company's simplistic security requirements! Why? Because a remote wipe doesn't wipe the SD card! I am SOOOooooo close to giving up on RIM - oh no I mean BlackBerry - another stupid choice. Everyone knew RIM was the company and BlackBerry was the product. Now you don't know what you're talking about when you say BlackBerry - and WHO CARES??? Get a quality product out - and do it NOW! I can't believe I'm stuck with staying with my nearly 2 year Ols 9900, or drinking the iPhone Kool Aide, or making myself vulnerable to the Android infectious free for all, or the Microsoft afterthought called Windows Phone 8 - today - they'll change the name befire the year is out so they look inovative - to their superiors!

    Frankly, the state of the Smartphone ecology bites the big one.

    And that's one man's opinion who has been in the industry for almost 40 years - but never mind. He's just a kook.

    UPDATE: This information is wrong. As noted in the thread, the SD card in a Z10 is considered personal and not a work area and as such cannot be written to by the work side of Balance nor wiped by BES10 because there is no need for it. The work perimeter does *not* have access to the SD card

    It appears that the information isn't wrong, I didn't specify that this is in an EAS environment, not a BES 10 environment.
    Last edited by JerryD; 03-17-2013 at 04:23 PM.
  2. Smiley88's Avatar
    Developer - ToySoft

    Posts
    3,941 Posts
    #2  

    Default

    just take the sd card out and don't give it to the employees. Or better yet take a screw driver the the sd card slot. That should do the job.
    BB10 Native Developer. Web www.toysoft.ca BBM Channel bbm:///C00445C5A
    Follow us @ http://twitter.com/toysoft or BlackBerry World
    Thanked by 2:
    hellraiser1091 (03-08-2013),  thekidshop (03-07-2013) 
  3. Optimus15's Avatar
    CrackBerry Abuser

    Posts
    105 Posts
    #3  

    Default

    German government thinks it's secure.......

    Posted via CB10
  4. cjcampbell's Avatar
    CrackBerry Genius of Geniuses

    Posts
    6,026 Posts
    Global Posts
    6,030 Global Posts
    #4  

    Default

    I don't know for sure, but isn't it simple enough to make sure that any company data isn't able to be saved to the SD card? And also, what company who's looking for real security, allow data to be stored on a swappable memory card? Even if they could remotely wipe the card, all it would take is for someone to remove it to get whatever data is stored there. Something tells me that the highly robust security standards of NATO are a tad more stringent than the company you work for.
    Thanked by 13:
    + Show/Hide list of the thanked
    bezag (03-07-2013),  Bold_until_Hybrid_Comes (03-08-2013),  Cesare21 (03-08-2013),  DisturbedRocks31 (03-07-2013),  elGuapoTorres (03-07-2013),  el_excelsior (03-08-2013),  endevour (03-08-2013),  janjan11 (03-08-2013),  PostMortem (03-07-2013),  R Field (03-07-2013),  recompile (03-08-2013),  renzokuken.tan (03-08-2013),  thekidshop (03-07-2013) 
    ESCON, xiaohuaxing, q649 and 24 others like this.
  5. ubizmo's Avatar
    CrackBerry Genius

    Posts
    3,915 Posts
    Global Posts
    4,077 Global Posts
    PIN
    2BD8C4F9
    #5  

    Default

    Does remote wipe of BBOS devices include the SD card? If so, I can see where there would be an expectation for this to continue, whatever the wisdom of storing data on a removable card. Frankly, it does seem like something that should be part of remote wipe. I don't work for any corporation but if I were in a situation where I wanted to remote wipe my phone, I'd want everything wiped.
    scalemaster34 and 3hb78ftg like this.
  6. cjcampbell's Avatar
    CrackBerry Genius of Geniuses

    Posts
    6,026 Posts
    Global Posts
    6,030 Global Posts
    #6  

    Default

    Quote Originally Posted by ubizmo View Post
    Does remote wipe of BBOS devices include the SD card? If so, I can see where there would be an expectation for this to continue, whatever the wisdom of storing data on a removable card. Frankly, it does seem like something that should be part of remote wipe. I don't work for any corporation but if I were in a situation where I wanted to remote wipe my phone, I'd want everything wiped.
    I agree, yet disagree. The point of BB10 and Balance is to have your own phone and corporate get's there own space, without the two intermingleing. When it comes to security and needing to have remote wipe, then no corporate info should be able to be stored on any removable memory card.
  7. NoAhB0Dy's Avatar
    CrackBerry Addict

    Posts
    691 Posts
    PIN
    24E66C48
    #7  

    Default

    I just looked at my BDS62 server and the only option currently for the SD card is to force encryption. Based on the differences between BES5 and BDS62, I would say there are still many many features to come.

    That being said, the work perimeter does *not* have access to the SD card so in that regard, how is this even remotely a security failure? The SD card will only contain personal data so unless your company feels personal security is part of enterprise security, then I guess you won't be sporting a shiny new BB10 device.

    Sucks to be those people!
    Find me on the Twitters! @jeffgerard
    Thanked by 14:
    + Show/Hide list of the thanked
    android2bb10 (03-08-2013),  bezag (03-07-2013),  BigAl_BB9900 (03-09-2013),  Bold_until_Hybrid_Comes (03-08-2013),  CDM76 (03-08-2013),  elGuapoTorres (03-07-2013),  gjohnsto (03-07-2013),  ibby-berry (03-09-2013),  jarrodmeyer (03-08-2013),  pcguy514 (03-07-2013),  PCMC (03-08-2013),  peter9477 (03-08-2013),  raremage (03-08-2013),  sk8er_tor (03-07-2013) 
  8. PostMortem's Avatar
    CrackBerry Abuser

    Posts
    386 Posts
    PIN
    Which one? Ask me.
    #8  

    Default

    Quote Originally Posted by cjcampbell View Post
    I don't know for sure, but isn't it simple enough to make sure that any company data isn't able to be saved to the SD card? And also, what company who's looking for real security, allow data to be stored on a swappable memory card? Even if they could remotely wipe the card, all it would take is for someone to remove it to get whatever data is stored there. Something tells me that the highly robust security standards of NATO are a tad more stringent than the company you work for.
    I agree with cjcampbell...
    It does stink if there's no option to remote wipe the card. That doesn't bother me though because data that is stored in an SD card is data that can be too simply removed. Does the work partition of Balance allow for data to be stored on the SD card? Maybe some SD encryption is in order at the company level.

    I certainly do not think that security wise using an iOS device or Android decive is better. I'm also not a security expert, but security experts have agreed (by certifying BB10).
    xiaohuaxing likes this.
  9. project_x's Avatar
    CrackBerry Addict

    Posts
    520 Posts
    #9  

    Default

    Actually, I think if you encrypt the sd card, and remote wipe the device, I believe your encryption key is deleted and the card is unreadable....

    Posted via CB10
    sk8er_tor likes this.
  10. hornlovah's Avatar
    CrackBerry Abuser

    Posts
    220 Posts
    #10  

    Default

    From: BlackBerry Enterprise Service 10 BlackBerry Device Service Solution Version: 6.2 (PDF):
    BlackBerry 10 devices are designed to protect work data by encrypting the files stored in the work space. Devices can also protect personal data by encrypting the files stored in the personal space if you or a user requires. Devices can also encrypt the files stored on media cards that are inserted in devices. Only personal data can be saved to media cards.
    Thanked by 12:
    + Show/Hide list of the thanked
    00stryder (03-08-2013),  3hb78ftg (03-08-2013),  bezag (03-07-2013),  BigAl_BB9900 (03-09-2013),  Brianflys (03-08-2013),  Cesare21 (03-08-2013),  elGuapoTorres (03-07-2013),  ESCON (03-08-2013),  jarrodmeyer (03-08-2013),  pcguy514 (03-07-2013),  spike12 (03-07-2013) 
  11. Serkle K's Avatar
    CrackBerry Abuser

    Posts
    461 Posts
    PIN
    ..._ _ _ ... my PlayBook has one too
    #11  

    Default

    I thought the whole point of BES10 and Balance was so that you can't take the corporate stuff and save it to the personal side, where the SD card is recognized to reside?
    uzmarvel likes this.
  12. Bluenoser63's Avatar
    CrackBerry Genius

    Posts
    2,773 Posts
    #12  

    Default

    Quote Originally Posted by JerryD View Post
    I worrk for one of the big 4 Accounting companies supporting Smartphones, and have been a loyal BlackBerry user since 1999. I got devestaing news today. After waiting almost two years for a new BlackBerry and the Z10 being days from being available, I learned today that the Z10 has FAILED my company's simplistic security requirements! Why? Because a remote wipe doesn't wipe the SD card! I am SOOOooooo close to giving up on RIM - oh no I mean BlackBerry - another stupid choice. Everyone knew RIM was the company and BlackBerry was the product. Now you don't know what you're talking about when you say BlackBerry - and WHO CARES??? Get a quality product out - and do it NOW! I can't believe I'm stuck with staying with my nearly 2 year Ols 9900, or drinking the iPhone Kool Aide, or making myself vulnerable to the Android infectious free for all, or the Microsoft afterthought called Windows Phone 8 - today - they'll change the name befire the year is out so they look inovative - to their superiors!

    Frankly, the state of the Smartphone ecology bites the big one.

    And that's one man's opinion who has been in the industry for almost 40 years - but never mind. He's just a kook.
    .
    If you have BES10, you can disable access from workspace to the SD card. Problem solved. It wasn't that RIM failed, it was your IT that didn't read the documentation.
    Thanked by 9:
    CDM76 (03-08-2013),  drknobs (03-08-2013),  eBud (03-08-2013),  gardenguy553 (03-09-2013),  QuentinD31 (03-13-2013),  R Field (03-08-2013),  raw_dog (03-07-2013),  renzokuken.tan (03-08-2013),  thekidshop (03-07-2013) 
  13. Zach Gilbert's Avatar
    CrackBerry Abuser

    Posts
    127 Posts
    Global Posts
    136 Global Posts
    #13  

    Default

    Have your company disable access to the SD in work mode. I'm pretty sure you can, and if so Problem solved.
    Zach Gilbert

    Twitter: @Zachgilbert

    Doing my best to help you get the most out of your BlackBerry!
  14. piko 72's Avatar
    CrackBerry Abuser

    Posts
    289 Posts
    Global Posts
    300 Global Posts
    #14  

    Default

    Negative thread! JerryD ,7 posts since 2007 !! mmmm !
    From Le Z30
    Thanked by 6:
    android2bb10 (03-08-2013),  csawai (03-08-2013),  elGuapoTorres (03-07-2013),  H_O_Boomaye (03-07-2013),  mscooley (03-07-2013),  PiotrBB10 (03-08-2013) 
  15. ultra07's Avatar
    CrackBerry Abuser

    Posts
    257 Posts
    #15  

    Default

    IT department was the failure here not the Z10!! You should let them know!
    Southern Illinois does not start at the southern edge of Cook County! (Chicago) It is about 250 miles South of there!! I really wish Illinois politicians knew this!!! Rockin an AWESOME Z30
    Thanked by 3:
    csawai (03-08-2013),  Stewartj1 (03-07-2013),  thekidshop (03-07-2013) 
  16. ubizmo's Avatar
    CrackBerry Genius

    Posts
    3,915 Posts
    Global Posts
    4,077 Global Posts
    PIN
    2BD8C4F9
    #16  

    Default

    Another option would be to partition the SD into work and personal areas, for Balance, and let remote wipe erase only the work area.
  17. Stewartj1's Avatar
    CrackBerry Master

    Posts
    1,009 Posts
    Global Posts
    1,018 Global Posts
    #17  

    Default

    Simple solution. Set policies to force encryption on the SD card. When the phone is wiped the data on the card is irretrievable.

    Go to Settings/Security/Encryption then read the warning.





    Posted via CB10
    Z10
    PlayBook 64
    Bold 9900
    Torch 9800 - retired
    3hb78ftg and joe.miller like this.
  18. masterscarhead1's Avatar
    CrackBerry Genius

    Posts
    2,949 Posts
    #18  

    Default

    Balance doesn't allow corporate info to be stored on SD anyways...... Not sure what your company's IT is smoking. If they work for one of the top 4 accounting companies BUT can't read or google information like this, they should probably be fired. Don't blame BBRY, blame your company. USA government and many others have found it secure...
  19. QuantumQnx's Avatar
    CrackBerry Abuser

    Posts
    303 Posts
    Global Posts
    305 Global Posts
    #19  

    Default

    BlackBerry is the most secure platform period. If the morons in your IT department can't figure that out then they don't deserve their jobs.

    The SD card is hot swapable and therefore should never be used for important data. IT policies should be able to restrict use.

    Posted via CB10
  20. tre10's Avatar
    CrackBerry User

    Posts
    65 Posts
    Global Posts
    78 Global Posts
    #20  

    Default

    Looks like the OP was a fire starter
    Thanked by:
    android2bb10 (03-08-2013) 
    sk8er_tor, sheeraz_aa and der_mit like this.
  21. koroshiyax's Avatar
    CrackBerry Abuser

    Posts
    252 Posts
    Global Posts
    261 Global Posts
    #21  

    Default

    This is what "Wipe the Work Space" feature is for on BES10. The company should not care about compromising pictures on your personal space

    The BES10 manual specifically states that you cannot save personal files onto the media card, but can encrypt them. Having said that, you can wipe media card data using BlackBerry Protect according to this:

    Delete all data from your lost device - User Guide - BlackBerry Protect - 1.1

    "You can delete all of the BlackBerry device data, including third-party applications and media card files, from your lost device. Some types of data, including pictures, email messages, third-party applications, and media files, cannot be backed up using BlackBerry Protect. This data will be deleted permanently from your device and media card."
    Thanked by:
    thekidshop (03-07-2013) 
  22. pcguy514's Avatar
    CrackBerry Abuser

    Posts
    425 Posts
    Global Posts
    447 Global Posts
    #22  

    Default

    Quote Originally Posted by NoAhB0Dy View Post
    the work perimeter does *not* have access to the SD card so in that regard, how is this even remotely a security failure? The SD card will only contain personal data so unless your company feels personal security is part of enterprise security

    Sucks to be those people!
    YUP... the internal 16gb is split 50/50 personal/enterprise apps are different for each side.
    Sounds like someone in the IT department did poor research...
    thekidshop likes this.
  23. mscooley's Avatar
    CrackBerry Genius

    Posts
    2,907 Posts
    #23  

    Default

    Quote Originally Posted by JerryD View Post
    I worrk for one of the big 4 Accounting companies supporting Smartphones, and have been a loyal BlackBerry user since 1999. I got devestaing news today. After waiting almost two years for a new BlackBerry and the Z10 being days from being available, I learned today that the Z10 has FAILED my company's simplistic security requirements! Why? Because a remote wipe doesn't wipe the SD card! I am SOOOooooo close to giving up on RIM - oh no I mean BlackBerry - another stupid choice. Everyone knew RIM was the company and BlackBerry was the product. Now you don't know what you're talking about when you say BlackBerry - and WHO CARES??? Get a quality product out - and do it NOW! I can't believe I'm stuck with staying with my nearly 2 year Ols 9900, or drinking the iPhone Kool Aide, or making myself vulnerable to the Android infectious free for all, or the Microsoft afterthought called Windows Phone 8 - today - they'll change the name befire the year is out so they look inovative - to their superiors!

    Frankly, the state of the Smartphone ecology bites the big one.

    And that's one man's opinion who has been in the industry for almost 40 years - but never mind. He's just a kook.
    There's a nice little security feature called SD Card Encryption. Use. It.
    HIT ME ON TWITTER
    @kmcooley
    Thanked by:
    thekidshop (03-07-2013) 
  24. kfh227's Avatar
    CrackBerry Genius

    Posts
    3,340 Posts
    Global Posts
    3,350 Global Posts
    #24  

    Default

    What about support for USB memory sticks? I know the Z10 does it but what about Android phones. I think some (not all) do it.

    If this is such a big issue, that needs to be disabled through policy ... and I think the SD card thing should also be disabled or have some control over it to prevent corporate data from getting onto it. Clearly an OS patch can fix it.
  25. Omnitech's Avatar
    Banned

    Posts
    10,593 Posts
    Global Posts
    10,601 Global Posts
    #25  

    Default

    I smell an astroturfer.

    EVEN IF BES10 was able to wipe the MicroSD card (and it doesn't, because it doesn't allow work data to be saved there anyway), the Z10 supports SDXC cards, which have a theoretical max capacity of 2TB.

    Given the slow speed of interchangeable flash memory cards, and given the need of a proper security wipe to make MULTIPLE PASSES of re-writing EVERY SINGLE BYTE of the media, does anyone here have the slightest concept of how long it would take to securely wipe a card of that size?

    In short: I hope you're planning to go on a nice vacation for a while while your memory card gets wiped.

    Samsung must pay well these days.
    Dapper37 and mscloutier like this.
Page 1 of 7 1234 ... LastLast

Similar Threads

  1. BlackBerry Z10 Fails Sidewalk Drop Test
    By TeaBoy in forum BlackBerry Z10
    Replies: 31
    Last Post: 04-17-2013, 09:30 AM
  2. Security Test?
    By Benjamindaines in forum BlackBerry OS 5 & 4.x
    Replies: 5
    Last Post: 10-22-2009, 12:25 AM
  3. WOW my tour FAILED the trackball test
    By ToNeBerry24 in forum BlackBerry Tour 9630
    Replies: 46
    Last Post: 08-26-2009, 02:19 PM
  4. RapidShare Download Security Code Update!!!
    By iamjoel5 in forum General BlackBerry Discussion
    Replies: 9
    Last Post: 06-22-2008, 03:50 PM
  5. Uninstalling Corporate security settings.
    By Kent62 in forum BlackBerry Administrators
    Replies: 6
    Last Post: 07-20-2007, 06:14 AM

Posting Permissions