Security Technical Overview

Local Navigation

Layer 2 security methods that a Wi-Fi enabled device supports

You can configure a Wi-Fi® enabled BlackBerry® device to use security methods for layer 2 (also known as the IEEE® 802.11™ link layer) so that the device and a wireless access point can encrypt data that they send between them and authenticate the user. The device supports the following layer 2 security methods:
  • open (no security method) WEP encryption (64-bit and 128-bit)
  • PSK protocol
  • IEEE® 802.1X™ standard and EAP authentication using EAP-FAST, EAP-SIM, EAP-TLS, EAP-TTLS, LEAP, and PEAP
  • TKIP and AES-CCMP encryption for WPA™-Personal, WPA2™-Personal, WPA™-Enterprise, and WPA2™-Enterprise

To support layer 2 security methods, the device has a built-in IEEE 802.1X supplicant.

If your organization’s enterprise Wi-Fi network uses EAP authentication, you can permit and deny device access to the enterprise Wi-Fi network by updating your organization’s central authentication server. You are not required to update the configuration of each access point.

For more information about IEEE 802.11 and IEEE 802.1X, see For more information about EAP authentication, see RFC 3748.

Next topic: WEP encryption

Was this information helpful? Send us your comments.