Security Technical Overview

Local Navigation

Permitting a third-party application to encode data on a device

A developer can use the Transcoder API to create an encoding scheme for data that a BlackBerry® Enterprise Server and BlackBerry device send between each other. The Transcoder API is part of the BlackBerry® Java® Development Environment. The BlackBerry Enterprise Server and the device can use the encoding scheme to encode and decode all gateway message envelope packets that the BlackBerry Enterprise Server and the device send between each other. The encoding scheme adds a transcoder ID to the beginning of the encoded data. The BlackBerry® Enterprise Solution encrypts the encoded data using BlackBerry transport layer encryption.

Before an application can access the Transcoder API, the BlackBerry® Signing Authority Tool must digitally sign the .cod file. The BlackBerry Signing Authority Tool uses the key of the RIM® Cryptographic API to authorize and authenticate the Transcoder implementation code.

If the RIM Cryptographic API does not support a specific algorithm, the developer can use the Transcoder API to add the algorithm to the encoding schemes. The BlackBerry Enterprise Solution applies the encoding schemes to any outgoing data that the BlackBerry transport layer encryption applies to. By default, the Transcoder API supports all algorithms that the RIM Cryptographic API supports.

If you permit the application to use the Transcoder API on the device, and if the application is not working correctly, the application might affect the security, usability, and performance of the BlackBerry Enterprise Solution. It might also cause the device to lose data.

To permit the BlackBerry Enterprise Server and device to use the encoding scheme, you must specify the hash of the application's .cod file in the Security Transcoder Cod File Hashes IT policy rule. For more information about using this IT policy rule, see the BlackBerry Enterprise Server Policy Reference Guide.

Was this information helpful? Send us your comments.