Welcome to the CrackBerry Forums Create Your Account or Ask a Question Answers in 5 minutes - no registration required!
Page 1 of 7 1234 ... LastLast
Results 1 to 25 of 174
Like Tree335Likes
  1. JerryD's Avatar
    CrackBerry User

    Posts
    16 Posts
    Thread AuthorThread Author   #1  

    Default Z10 fails corporate security test [Updated]

    I worrk for one of the big 4 Accounting companies supporting Smartphones, and have been a loyal BlackBerry user since 1999. I got devestaing news today. After waiting almost two years for a new BlackBerry and the Z10 being days from being available, I learned today that the Z10 has FAILED my company's simplistic security requirements! Why? Because a remote wipe doesn't wipe the SD card! I am SOOOooooo close to giving up on RIM - oh no I mean BlackBerry - another stupid choice. Everyone knew RIM was the company and BlackBerry was the product. Now you don't know what you're talking about when you say BlackBerry - and WHO CARES??? Get a quality product out - and do it NOW! I can't believe I'm stuck with staying with my nearly 2 year Ols 9900, or drinking the iPhone Kool Aide, or making myself vulnerable to the Android infectious free for all, or the Microsoft afterthought called Windows Phone 8 - today - they'll change the name befire the year is out so they look inovative - to their superiors!

    Frankly, the state of the Smartphone ecology bites the big one.

    And that's one man's opinion who has been in the industry for almost 40 years - but never mind. He's just a kook.

    UPDATE: This information is wrong. As noted in the thread, the SD card in a Z10 is considered personal and not a work area and as such cannot be written to by the work side of Balance nor wiped by BES10 because there is no need for it. The work perimeter does *not* have access to the SD card

    It appears that the information isn't wrong, I didn't specify that this is in an EAS environment, not a BES 10 environment.
    Last edited by JerryD; 03-17-13 at 04:23 PM.
  2. Smiley88's Avatar
    Developer - ToySoft

    Posts
    4,697 Posts
    Global Posts
    4,698 Global Posts
    #2  

    Default

    just take the sd card out and don't give it to the employees. Or better yet take a screw driver the the sd card slot. That should do the job.
  3. Optimus15's Avatar
    CrackBerry Abuser

    Posts
    105 Posts
    #3  

    Default

    German government thinks it's secure.......

    Posted via CB10
  4. cjcampbell's Avatar
    CrackBerry Genius of Geniuses

    Posts
    6,617 Posts
    Global Posts
    6,621 Global Posts
    #4  

    Default

    I don't know for sure, but isn't it simple enough to make sure that any company data isn't able to be saved to the SD card? And also, what company who's looking for real security, allow data to be stored on a swappable memory card? Even if they could remotely wipe the card, all it would take is for someone to remove it to get whatever data is stored there. Something tells me that the highly robust security standards of NATO are a tad more stringent than the company you work for.
  5. ubizmo's Avatar
    CrackBerry Genius

    Posts
    4,941 Posts
    Global Posts
    5,191 Global Posts
    PIN
    2BD8C4F9
    #5  

    Default

    Does remote wipe of BBOS devices include the SD card? If so, I can see where there would be an expectation for this to continue, whatever the wisdom of storing data on a removable card. Frankly, it does seem like something that should be part of remote wipe. I don't work for any corporation but if I were in a situation where I wanted to remote wipe my phone, I'd want everything wiped.
    3hb78ftg and anon1727506 like this.
  6. cjcampbell's Avatar
    CrackBerry Genius of Geniuses

    Posts
    6,617 Posts
    Global Posts
    6,621 Global Posts
    #6  

    Default

    Quote Originally Posted by ubizmo View Post
    Does remote wipe of BBOS devices include the SD card? If so, I can see where there would be an expectation for this to continue, whatever the wisdom of storing data on a removable card. Frankly, it does seem like something that should be part of remote wipe. I don't work for any corporation but if I were in a situation where I wanted to remote wipe my phone, I'd want everything wiped.
    I agree, yet disagree. The point of BB10 and Balance is to have your own phone and corporate get's there own space, without the two intermingleing. When it comes to security and needing to have remote wipe, then no corporate info should be able to be stored on any removable memory card.
  7. NoAhB0Dy's Avatar
    CrackBerry Addict

    Posts
    787 Posts
    Global Posts
    789 Global Posts
    PIN
    2BE4A207
    #7  

    Default

    I just looked at my BDS62 server and the only option currently for the SD card is to force encryption. Based on the differences between BES5 and BDS62, I would say there are still many many features to come.

    That being said, the work perimeter does *not* have access to the SD card so in that regard, how is this even remotely a security failure? The SD card will only contain personal data so unless your company feels personal security is part of enterprise security, then I guess you won't be sporting a shiny new BB10 device.

    Sucks to be those people!
  8. PostMortem's Avatar
    CrackBerry Abuser

    Posts
    447 Posts
    PIN
    Which one? Ask me.
    #8  

    Default

    Quote Originally Posted by cjcampbell View Post
    I don't know for sure, but isn't it simple enough to make sure that any company data isn't able to be saved to the SD card? And also, what company who's looking for real security, allow data to be stored on a swappable memory card? Even if they could remotely wipe the card, all it would take is for someone to remove it to get whatever data is stored there. Something tells me that the highly robust security standards of NATO are a tad more stringent than the company you work for.
    I agree with cjcampbell...
    It does stink if there's no option to remote wipe the card. That doesn't bother me though because data that is stored in an SD card is data that can be too simply removed. Does the work partition of Balance allow for data to be stored on the SD card? Maybe some SD encryption is in order at the company level.

    I certainly do not think that security wise using an iOS device or Android decive is better. I'm also not a security expert, but security experts have agreed (by certifying BB10).
    xiaohuaxing likes this.
  9. project_x's Avatar
    CrackBerry Addict

    Posts
    558 Posts
    #9  

    Default

    Actually, I think if you encrypt the sd card, and remote wipe the device, I believe your encryption key is deleted and the card is unreadable....

    Posted via CB10
    sk8er_tor likes this.
  10. hornlovah's Avatar
    CrackBerry Abuser

    Posts
    220 Posts
    #10  

    Default

    From: BlackBerry Enterprise Service 10 BlackBerry Device Service Solution Version: 6.2 (PDF):
    BlackBerry 10 devices are designed to protect work data by encrypting the files stored in the work space. Devices can also protect personal data by encrypting the files stored in the personal space if you or a user requires. Devices can also encrypt the files stored on media cards that are inserted in devices. Only personal data can be saved to media cards.
  11. Serkle K's Avatar
    CrackBerry Addict

    Posts
    646 Posts
    Global Posts
    1,030 Global Posts
    PIN
    ..._ _ _ ... my PlayBook has one too
    #11  

    Default

    I thought the whole point of BES10 and Balance was so that you can't take the corporate stuff and save it to the personal side, where the SD card is recognized to reside?
    uzmarvel likes this.
  12. Bluenoser63's Avatar
    CrackBerry Genius

    Posts
    4,218 Posts
    #12  

    Default

    Quote Originally Posted by JerryD View Post
    I worrk for one of the big 4 Accounting companies supporting Smartphones, and have been a loyal BlackBerry user since 1999. I got devestaing news today. After waiting almost two years for a new BlackBerry and the Z10 being days from being available, I learned today that the Z10 has FAILED my company's simplistic security requirements! Why? Because a remote wipe doesn't wipe the SD card! I am SOOOooooo close to giving up on RIM - oh no I mean BlackBerry - another stupid choice. Everyone knew RIM was the company and BlackBerry was the product. Now you don't know what you're talking about when you say BlackBerry - and WHO CARES??? Get a quality product out - and do it NOW! I can't believe I'm stuck with staying with my nearly 2 year Ols 9900, or drinking the iPhone Kool Aide, or making myself vulnerable to the Android infectious free for all, or the Microsoft afterthought called Windows Phone 8 - today - they'll change the name befire the year is out so they look inovative - to their superiors!

    Frankly, the state of the Smartphone ecology bites the big one.

    And that's one man's opinion who has been in the industry for almost 40 years - but never mind. He's just a kook.
    .
    If you have BES10, you can disable access from workspace to the SD card. Problem solved. It wasn't that RIM failed, it was your IT that didn't read the documentation.
  13. Zach Gilbert's Avatar
    CrackBerry Abuser

    Posts
    127 Posts
    Global Posts
    139 Global Posts
    #13  

    Default

    Have your company disable access to the SD in work mode. I'm pretty sure you can, and if so Problem solved.
  14. piko 72's Avatar
    CrackBerry Abuser

    Posts
    355 Posts
    Global Posts
    375 Global Posts
    #14  

    Default

    Negative thread! JerryD ,7 posts since 2007 !! mmmm !
  15. ultra07's Avatar
    CrackBerry Abuser

    Posts
    303 Posts
    #15  

    Default

    IT department was the failure here not the Z10!! You should let them know!
  16. ubizmo's Avatar
    CrackBerry Genius

    Posts
    4,941 Posts
    Global Posts
    5,191 Global Posts
    PIN
    2BD8C4F9
    #16  

    Default

    Another option would be to partition the SD into work and personal areas, for Balance, and let remote wipe erase only the work area.
  17. Stewartj1's Avatar
    CrackBerry Master

    Posts
    1,074 Posts
    Global Posts
    1,083 Global Posts
    #17  

    Default

    Simple solution. Set policies to force encryption on the SD card. When the phone is wiped the data on the card is irretrievable.

    Go to Settings/Security/Encryption then read the warning.





    Posted via CB10
    joe.miller and 3hb78ftg like this.
  18. masterscarhead1's Avatar
    CrackBerry Genius

    Posts
    3,713 Posts
    #18  

    Default

    Balance doesn't allow corporate info to be stored on SD anyways...... Not sure what your company's IT is smoking. If they work for one of the top 4 accounting companies BUT can't read or google information like this, they should probably be fired. Don't blame BBRY, blame your company. USA government and many others have found it secure...
  19. QuantumQnx's Avatar
    CrackBerry Abuser

    Posts
    303 Posts
    Global Posts
    305 Global Posts
    #19  

    Default

    BlackBerry is the most secure platform period. If the morons in your IT department can't figure that out then they don't deserve their jobs.

    The SD card is hot swapable and therefore should never be used for important data. IT policies should be able to restrict use.

    Posted via CB10
  20. tre10's Avatar
    CrackBerry Abuser

    Posts
    158 Posts
    Global Posts
    171 Global Posts
    #20  

    Default

    Looks like the OP was a fire starter
  21. koroshiyax's Avatar
    CrackBerry Abuser

    Posts
    252 Posts
    Global Posts
    261 Global Posts
    #21  

    Default

    This is what "Wipe the Work Space" feature is for on BES10. The company should not care about compromising pictures on your personal space

    The BES10 manual specifically states that you cannot save personal files onto the media card, but can encrypt them. Having said that, you can wipe media card data using BlackBerry Protect according to this:

    Delete all data from your lost device - User Guide - BlackBerry Protect - 1.1

    "You can delete all of the BlackBerry device data, including third-party applications and media card files, from your lost device. Some types of data, including pictures, email messages, third-party applications, and media files, cannot be backed up using BlackBerry Protect. This data will be deleted permanently from your device and media card."
    thekidshop likes this.
  22. pcguy514's Avatar
    CrackBerry Abuser

    Posts
    426 Posts
    Global Posts
    448 Global Posts
    #22  

    Default

    Quote Originally Posted by NoAhB0Dy View Post
    the work perimeter does *not* have access to the SD card so in that regard, how is this even remotely a security failure? The SD card will only contain personal data so unless your company feels personal security is part of enterprise security

    Sucks to be those people!
    YUP... the internal 16gb is split 50/50 personal/enterprise apps are different for each side.
    Sounds like someone in the IT department did poor research...
    thekidshop likes this.
  23. mscooley's Avatar
    CrackBerry Genius

    Posts
    2,988 Posts
    #23  

    Default

    Quote Originally Posted by JerryD View Post
    I worrk for one of the big 4 Accounting companies supporting Smartphones, and have been a loyal BlackBerry user since 1999. I got devestaing news today. After waiting almost two years for a new BlackBerry and the Z10 being days from being available, I learned today that the Z10 has FAILED my company's simplistic security requirements! Why? Because a remote wipe doesn't wipe the SD card! I am SOOOooooo close to giving up on RIM - oh no I mean BlackBerry - another stupid choice. Everyone knew RIM was the company and BlackBerry was the product. Now you don't know what you're talking about when you say BlackBerry - and WHO CARES??? Get a quality product out - and do it NOW! I can't believe I'm stuck with staying with my nearly 2 year Ols 9900, or drinking the iPhone Kool Aide, or making myself vulnerable to the Android infectious free for all, or the Microsoft afterthought called Windows Phone 8 - today - they'll change the name befire the year is out so they look inovative - to their superiors!

    Frankly, the state of the Smartphone ecology bites the big one.

    And that's one man's opinion who has been in the industry for almost 40 years - but never mind. He's just a kook.
    There's a nice little security feature called SD Card Encryption. Use. It.
    thekidshop likes this.
  24. kfh227's Avatar
    CrackBerry Genius

    Posts
    3,711 Posts
    Global Posts
    3,727 Global Posts
    #24  

    Default

    What about support for USB memory sticks? I know the Z10 does it but what about Android phones. I think some (not all) do it.

    If this is such a big issue, that needs to be disabled through policy ... and I think the SD card thing should also be disabled or have some control over it to prevent corporate data from getting onto it. Clearly an OS patch can fix it.
  25. Omnitech's Avatar
    Dragon Slayer

    Posts
    10,933 Posts
    #25  

    Default

    I smell an astroturfer.

    EVEN IF BES10 was able to wipe the MicroSD card (and it doesn't, because it doesn't allow work data to be saved there anyway), the Z10 supports SDXC cards, which have a theoretical max capacity of 2TB.

    Given the slow speed of interchangeable flash memory cards, and given the need of a proper security wipe to make MULTIPLE PASSES of re-writing EVERY SINGLE BYTE of the media, does anyone here have the slightest concept of how long it would take to securely wipe a card of that size?

    In short: I hope you're planning to go on a nice vacation for a while while your memory card gets wiped.

    Samsung must pay well these days.
    Dapper37 and mscloutier like this.
Page 1 of 7 1234 ... LastLast

Similar Threads

  1. BlackBerry Z10 Fails Sidewalk Drop Test
    By TeaBoy in forum BlackBerry Z10
    Replies: 31
    Last Post: 04-17-13, 09:30 AM
  2. Security Test?
    By Benjamindaines in forum BlackBerry OS 5 & 4.x
    Replies: 5
    Last Post: 10-22-09, 12:25 AM
  3. WOW my tour FAILED the trackball test
    By ToNeBerry24 in forum BlackBerry Tour 9630
    Replies: 46
    Last Post: 08-26-09, 02:19 PM
  4. RapidShare Download Security Code Update!!!
    By iamjoel5 in forum General BlackBerry Discussion
    Replies: 9
    Last Post: 06-22-08, 03:50 PM
  5. Uninstalling Corporate security settings.
    By Kent62 in forum BlackBerry Administrators
    Replies: 6
    Last Post: 07-20-07, 06:14 AM

Posting Permissions