[wasabi89]

BlackBerry has the reputation of being security focus os. So what are some of the security-related features that are more superior than other os out there?

Posted via CB10

[Maxxxpower]

Without BES? None. Just a marketing trick.

[jpvj]

They claim the OS is built from scratch (OK on top of QNX) with focus on security.

So far nobody has gained root access to a BlackBerry 10 device, but that could be due to the low market share -> not an interesting target.

Posted via CB10

[Mercury]

They claim the OS is built from scratch (OK on top of QNX) with focus on security.

So far nobody has gained root access to a BlackBerry 10 device, but that could be due to the low market share -> not an interesting target.

Posted via CB10

Far from the truth, BlackBerry has always been the tech darling when it comes to security. It could be BES and it could also be a consumer device, many many many years have passed and no one has been able to hack into a blackberry system even not on a consumer device. It is the way the OS is designed and core security scripts are written. An unhackable device such as blackberry has been the vain of many hackers. BlackBerry does host (not sure if they do still or not) hackathons. Minor hacks have been done and small security vulnerabilities have been discovered, but patched right away from BlackBerry. No one at least publicly has said they have been able to hack the OS kernal.

[conite]

Beyond what has been said, no virus has ever corrupted BB10, or gained any access.

The Android apps are sandboxed and can only access your data - which you have expressly consented to with the permissions. The apps themselves are vetted by BlackBerry Guardian software before they can be installed on the device.

No rooting like Android, and no jailbreaking like iOS, is possible. When you pick up a BlackBerry device, you know the OS is intact and secure.

Z30STA100-5/10.3.2.680

[jpvj]

Far from the truth, BlackBerry has always been the tech darling when it comes to security. It could be BES and it could also be a consumer device, many many many years have passed and no one has been able to hack into a blackberry system even not on a consumer device. It is the way the OS is designed and core security scripts are written. An unhackable device such as blackberry has been the vain of many hackers. BlackBerry does host (not sure if they do still or not) hackathons. Minor hacks have been done and small security vulnerabilities have been discovered, but patched right away from BlackBerry. No one at least publicly has said they have been able to hack the OS kernal.

Which part of what I wrote was "Far from the truth"?

Btw: You're right when you state BlackBerry has issued patches very fast. The problem has however *always* been carrier approval - even in the BB OS days. This could delay installation many, many months.
Apple really shows their power when they release an update - everybody gets it at the same time.

[dpeters11]

Which part of what I wrote was "Far from the truth"?

Btw: You're right when you state BlackBerry has issued patches very fast. The problem has however *always* been carrier approval - even in the BB OS days. This could delay installation many, many months.
Apple really shows their power when they release an update - everybody gets it at the same time.

I'm wondering if he meant to quote the post above yours that said it was just a marketing trick.

[jpvj]

Btw: At least one successfull attach was published for BB OS6, so it is incorrect to say that a BB device has *never* been hacked.
BlackBerry 6 Browser Hacked, RIM Provides Workaround | Pocketnow

BB10 had a root exploit just before it was released and It could very well have made it if not reported by a 3. part to BB.

[Distrack]

No rooting like Android, and no jailbreaking like iOS, is possible. When you pick up a BlackBerry device, you know the OS is intact and secure.

Z30STA100-5/10.3.2.680

They were able to gain root access to BlackBerry phones, as well as some Android phones and the Sprint configuration of some iOS devices. The devices most vulnerable to the attack were the BlackBerry Z10 and the HTC One M7.

Fanboys have a short memory apparently: Blackphone goes to Def Con and gets hacked?sort of | Ars Technica

[beowulf101]

Without a BES, forget it. Encrypt your device and media card, watch your app permissions and... that's it. BBM is slightly scrambled, unless you're on a BES messaging someone else on another / same BES, and your admin is pushing a few policies your way.

Most decent businesses will also use some sort of MDM such as Meraki, Mobile Iron etc, gate way level security and some sort of NAC going on. New WLAN products like Aerohive add layer 7 policy at the edge to keep things in check.

BlackBerry is a choice for enterprise with a budget who are wrapping devices into turnkey services or consumers that like the OS. Don't kid yourself that it's secure 'as is'. Go look at the Blackphone 2 vs BlackBerry Passport thread for more elaborate comparison to another OS, final few comments.

Posted via CB10

[Richard Buckley]

Without a BES, forget it. Encrypt your device and media card, watch your app permissions and... that's it. BBM is slightly scrambled, unless you're on a BES messaging someone else on another / same BES, and your admin is pushing a few policies your way.


Posted via CB10

Without BES, BBM on BB10, iOS and Android is protected by TLS between handsets and the BBM server. Not as good as end to end with BBM Protected, but much better than "lightly scrambled".



Z10STL100-3/10.3.1.2708 SR 10.3.1.1865

[beowulf101]

If it was that good and BlackBerry didn't have a master key for it, we wouldn't need BES. As it is I need to resort to Silent Services for non BlackBerry Messenger Protected users in addition due to having the BES, and as a result am now moving more and more to Silent Circle. TLS is just not enough.

Posted via CB10

[Richard Buckley]

If it was that good and BlackBerry didn't have a master key for it, we wouldn't need BES. As it is I need to resort to Silent Services for non BlackBerry Messenger Protected users in addition due to having the BES, and as a result am now moving more and more to Silent Circle. TLS is just not enough.

Posted via CB10

Then your issue is that consumer BBM is not end to end encrypted. That is fair, you are the only one who can decide what level of protection you want for your communication. But IT and communications security is an area where you need to be precise.

Z10STL100-3/10.3.1.2708 SR 10.3.1.1865

[beowulf101]

But IT and communications security is an area where you need to be precise.

Yes, agreed. There seem to be some misleading impressions that BBM on a consumer level is more secure than it is in reality, and that doesn't do anyone any favours to not have this pointed out. If truly secure messaging, video and calls are a requirement, then consumer BBM isn't it, and consumer awareness of this needs to be highlighted so that appropriate choices can be made for what they want out of a service.

[paulwallace1234]

Found this, might shine some light on anyone who is interested in BB10 security
BlackBerry 10 Security Overview

Similar model to Symbian with the software to hardware checks

[Richard Buckley]

Yes, agreed. There seem to be some misleading impressions that BBM on a consumer level is more secure than it is in reality, and that doesn't do anyone any favours to not have this pointed out. If truly secure messaging, video and calls are a requirement, then consumer BBM isn't it, and consumer awareness of this needs to be highlighted so that appropriate choices can be made for what they want out of a service.

That is my point. What does "truly secure messaging" mean. For you it sounds like it means that only the correspondents can read the message, not any entity involved in the carriage of the message. For others that phrase might have a completely different meaning.

Consumer level BBM does not provide end to end encryption. However for all but BBOS it does use TLS from the endpoints to the server. This is the same level of security currently available as the maximum for almost all email accounts currently in use, Facebook, Twitter, Tinder, Instagram, etc.

Yes some people believe that BBM was always securely encrypted, even with out BES. This was not true. All BBM and PIN-to-PIN traffic on BIS was only encrypted by a common triple DES key. On the other hand some people believe that this is still the case with BB10, and cross platform. This is also not true. This is why one has to be precise in what one says about the "security" of each product. Saying that BBM is only "lightly scrambled" is not correct, and may give the impression that it provides less protection than it does.

[conite]

Fanboys have a short memory apparently: Blackphone goes to Def Con and gets hacked?sort of | Ars Technica

They did not gain root access, per se. They gained access to a carrier management tool. Yes the tool operates at a high rate of privilege on the device, but the hack did not get past what the tool itself allows. Not that this is a good thing, but the carriers have patched it.

The differing degree of access between devices had more to do with how properly compliant (which they are supposed to be) the device was to the tool.

Z30STA100-5/10.3.2.798

[thurask]

Fanboys have a short memory apparently: Blackphone goes to Def Con and gets hacked?sort of | Ars Technica

That one was with OMADM, so it wasn't through any fault of the BlackBerry OS (or Android or iOS, for that matter).

Anyway, this should help: http://bizblog.blackberry.com/2015/0...-at-endpoints/

Posted via CB10

[greenpoise]

Btw: At least one successfull attach was published for BB OS6, so it is incorrect to say that a BB device has *never* been hacked.
BlackBerry 6 Browser Hacked, RIM Provides Workaround | Pocketnow

BB10 had a root exploit just before it was released and It could very well have made it if not reported by a 3. part to BB.

Your talking about BB6?? Of course is easily forgotten!! That was ages ago. One in quite some years, that's a pretty darn good record. Ask Google (android) or Apple if they can say the same thing. As for the BB10 exploit that never made it out, pure BS. Show the facts. Plus if it never came out, it was never technically a vulnerability. You can't root BlackBerry phones that's a fact as of today buddy. Just getting your facts straight. BB6. Haaa your kidding right?

Posted via CB10

[greenpoise]

Without BES? None. Just a marketing trick.

Dream on!! Seems like you were jailbroken or rooted as well!! Can't say that bout BlackBerry!

Posted via CB10