please, please, please rtfm
@ Anonymous Coward
Posted Tuesday 27th May 2008 13:31 GMT
"The BlackBerry security architecture for enterprise customers is purposefully designed to exclude the capability for RIM or any third party to read encrypted information under any circumstances"
So how do they process spam!."
BlackBerry's infrastructure for enterprise customers doesn't filter spam. Your getting confused between enterprise and RIM's other offerings. With enterprise the encryption secures traffic from the handset to the customers server not just to the relay (see: http://na.blackberry.com/eng/ataglance/security/bes_diag_large.jpg). The encryption for prosumer (internet customers) works from handset to relay. Beyond this security is specified by the integrated account (POP, IMAP or OWA).
This doesn't mean the RIM relay can't store enterprise encrypted messages it routes for later cracking although as stated you'd need some serious computing power (NSA style) and if these kind of boys are after you I'd probably be inclined to not send e-mail at all for sensitive communication.
Or for the paranoid what's to say the BES software doesn't automatically send a copy of users keys back to the relay so copies of encrypted messages can be decrypted stored and forwarded to your black helicopter agency of choice.
I refer all interested parties to:
http://na.blackberry.com/eng/ataglance/security/certifications.jsp