Home » Blackberry Manuals » Input Devices » Blackberry PRD-09695-004 » Manual Viewer

Blackberry PRD-09695-004 Security Guide - Page 23

Appendix D: BlackBerry Smart Card Reader shared cryptosystem, Parameter, Description

UPC - 097738554967

View all Blackberry PRD-09695-004 manuals

Add to My Manuals
Save this manual to your list of manuals

Page 23 highlights

BlackBerry Smart Card Reader 23 Appendix D: BlackBerry Smart Card Reader shared cryptosystem parameters The BlackBerry Smart Card Reader and the BlackBerry device or computer with the BlackBerry Smart Card Reader software and drivers installed are designed to share the following cryptosystem parameters. Parameter E(Fq) Fq P xR s S Description • the NIST-approved 521-bit random elliptic curve over Fq, which has a cofactor of 1 Note: The initial establishment key protocol does all math operations in the group E(Fq). a finite field of prime order q a point of E that generates a subgroup of E(Fq) of prime order r • a representation of elliptic curve scalar multiplication, where x is the scalar and R is a point on E(Fq). • the secure pairing key value that appears on the BlackBerry Smart Card Reader screen Note: The secure pairing key must be known only to the authorized user of the BlackBerry device or computer and the BlackBerry Smart Card Reader until the protocol completes. • the secure pairing value (s) converted to a point on E(Fq) www.blackberry.com

Section	Page
BlackBerry Smart Card Reader	4
Authenticating a user using a smart card	4
Integrating a smart card with existing secure messaging tech	4
New in this release	5
System requirements	5
System architecture	5
BlackBerry Enterprise Solution security	5
Bluetooth enabled BlackBerry devices	6
Managing Bluetooth enabled BlackBerry devices	6
Restricting Bluetooth technology on the computer	7
Bluetooth security measures on the BlackBerry Smart Card Rea	7
BlackBerry Smart Card Reader security	8
Control Bluetooth connections from third-party applications	10
Managing BlackBerry Smart Card Reader technology	10
Establishing an encrypted and authenticated connection to th	13
Performing the Bluetooth pairing process and the secure pair	14
Performing the Bluetooth pairing process and the secure pair	14
Reconnecting to the BlackBerry device or computer automatica	14
Initial key establishment protocol used in the secure pairin	14
Initial key establishment protocol process	14
Connection key establishment protocol used in the secure pai	15
Connection key establishment protocol process	16
Encrypting and authenticating data on the application layer	17
Using two-factor authentication	17
Turning on two-factor authentication on the BlackBerry devic	17
Confirming that the BlackBerry device is bound to the correc	18
Unbinding the smart card from the BlackBerry device	18
Setting two-factor authentication on the computer	18
Related resources	19
Appendix A: BlackBerry Smart Card Reader supported algorithm	20
Appendix B: Connection key establishment protocol errors	21
Appendix C: Application layer protocol encryption and authen	22
Appendix D: BlackBerry Smart Card Reader shared cryptosystem	23
Appendix E: Examples of attacks that the BlackBerry Smart Ca	24
Eavesdropping	24
Impersonating a BlackBerry device or computer	24
Man-in-the-middle attack	24
Offline attack	24
Offline dictionary attack	25
Online dictionary attack	25
Small subgroup attack	25
Appendix F: Smart card binding information	26

Match case Limit results 1 per page

BlackBerry Smart Card Reader

Appendix D: BlackBerry Smart Card Reader shared cryptosystem parameters

The BlackBerry Smart Card Reader and the BlackBerry device or computer with the BlackBerry Smart Card

Reader software and drivers installed are designed to share the following cryptosystem parameters.

Parameter

Description

E(Fq)

•

the NIST-approved 521-bit random elliptic curve over Fq, which has a cofactor of 1

Note:

The initial establishment key protocol does all math operations in the group E(Fq).

a finite field of prime order q

a point of E that generates a subgroup of E(Fq) of prime order r

•

a representation of elliptic curve scalar multiplication, where

is the scalar and

is a

point on E(Fq).

•

the secure pairing key value that appears on the BlackBerry Smart Card Reader screen

Note

: The secure pairing key must be known only to the authorized user of the BlackBerry

device or computer and the BlackBerry Smart Card Reader until the protocol completes.

•

the secure pairing value (

) converted to a point on E(Fq)