Search PinStack.com: Advanced Search | Tags

PinStack.com > SmartPhone Forums > Smartphones for Professionals > BlackBerry Smartphones > RIM's Software & Services > RIM Handheld OS >

Non encryption Security question


Join our alliance for full access to support forums, smartphone add-ons & device news! - Free Sign up!

RIM Handheld OS RIM OS software, downloads, install guides etc.

Reply
 
Thread Tools
  #1  
Old 11-20-2008 -
obergs2 obergs2 no está en línea
Stack level 1
Join Date: Nov 2008
  
Device:
Posts: 1
Trust Level: obergs2 Average
Bookmark and Share   
Question Non encryption Security question
I work for a co. that is currently implementing a policy push from our BES server that includes encryption, 4 char password and auto wipe after 10 incorrect password attemps.

A question has come up from upper executives as to the necessity for encryption as it eats battery time and it slows the OS.

My question is what tools are available to access data on a stolen BB that has a 4 char password WITHOUT ENCRYPTION and how quickly could that said device be cracked.
Reply With Quote
  #2  
Old 11-22-2008 -
Thyth Thyth no está en línea
Stack level 3
Join Date: Sep 2007
  
Device: 8320
Posts: 245
Blog Entries: 1
Trust Level: Thyth GoodThyth GoodThyth Good
This highly depends on the motivation of your attacker. If someone really wants the data stored on a hand held, they would tap the flash chips, and read the data out that way. With the correct equipment, dissembling the device and extracting data from flash would be a matter of minutes.

With the 10 password entry limitation, brute forcing the password wouldn't be a good way to access the device.

Make the call based on your threat model.
Reply With Quote