The BlackBerry® Browser and BlackBerry smartphone applications are able to make use of Hypertext Transfer Protocol over Secure Sockets Layer (HTTPS) connections. When the Secure Sockets Layer/Transport Layer Security (SSL/TLS) connection options on the BlackBerry smartphone are set to use end-to-end HTTPS (Handheld) mode, the BlackBerry® Mobile Data System (BlackBerry MDS) Connection Service opens the Transmission Control Protocol (TCP) connection with the BlackBerry® Enterprise Server and maintains a separate connection with the BlackBerry smartphone.
When those connections have been established, the BlackBerry MDS Connection Service passes the SSL/TLS encrypted packets back and forth between the BlackBerry smartphone and the BlackBerry Enterprise Server. Data remains encrypted at all points between the BlackBerry smartphone and the BlackBerry Enterprise Server.
Verify that the BlackBerry Browser connection is secure
For BlackBerry smartphones running BlackBerry Device Software 4.2.2 or later, the target web server can look for X-RIM-HTTPS: 1.1 in the HTTP header of data packets received from and sent to the BlackBerry smartphone. If X-RIM-HTTPS: 1.1 appears, the BlackBerry Browser connection is secure end-to-end. With BlackBerry Device Software 4.2.2 or ealier, X-RIM-HTTPS: 1.1 never appears in the HTTP header, regardless of the connection type.
See the BlackBerry Enterprise Solution Security Technical Overview for more information about BlackBerry® Enterprise Solution security features and an overview of the BlackBerry Enterprise Solution security architecture.Visit www.blackberry.com/security for more information on BlackBerry Enterprise Solution security.