different levels of FIPS 140-2
Originally Posted by
Eitot Thanks for this - but I would love some clarification, if that is okay.... as my understanding is that only BlackBerry (amongst mobile phone OS's) have the higher level of FIPS 140-2.
In April 2013 I attended a Mobile Device Security convention (invitation only) in the US - one of the main speakers was from the FBI, another one was from some US Federal Technology Department (can't remember what this department is actually called)....
Note: I was on the 'management' track, NOT the 'techie' track..... so they probably used much simpler language, definitions & examples for us.....
My understanding of what the speakers told us, is that there are 4 main parts/levels within FIPS 140-2, and only BlackBerry mobile device OS's pass more than one of the four parts. (For example, Samsung passed 1 of the 4 parts, for it's Knox encrypted storage - but had no hope of passing the rest of FIPS 140-2).
Back then (c. 18 months ago) BlackBerry was seen to be in a terrible financial state, and the speakers were very worried that RIM/BlackBerry would go bust - leaving them no alternative for receiving and storing confidential email/data on a mobile phone - the FBI guy was explicit about this, saying that the only work emails he would be allowed/able to receive on an Android phone (eg Samsung with Knox) would be ones about the coffee machine being repaired. For all confidential emails/data, he would have to lug around a laptop (in lieu of his BlackBerry).....
Can anyone else shed any light on this please?