Slashdot Mirror

Besides the 47k apps, it looks like the guy wrote a script to up-star all of his apps -- which makes searching for useful apps a pain. The majority of them are 4stars+: http://appworld.blackberry.com/webstore/vendor/102/?countrycode=US

If you aren't just trolling then it may be defective. I haven't had any of the issues you just mentioned. The battery lasts for weeks with light use. If you would like to still use it I would suggest reinstalling the OS clean and see if it doesn't clear up.

Doesn't BB10 use ActiveSync?

Why, yes. Yes it does.

http://bizblog.blackberry.com/2012/08/rim-activesync-security/

What we do know is that in 2010, Blackberry was also banned by Saudi Arabia. The reason behind the ban was because BBM did not allow their customers' exchanges to be monitored by government. The ban was lifted after BB made a deal with the government to share user data.

That may have been the stated reason, but it's complete bullshit.

BBM is encrypted with 3des, and with a known default key. Here's RIM's documentation about it: http://docs.blackberry.com/en/admin/deliverables/21760/PIN_encryption_keys_for_BBM_1840226_11.jsp

For a government with a multibillion dollar surveillance budget to claim that they can't monitor BBM is ridiculous.

Either the Saudis are incredibly lazy/incompetent, or they're flat out lying.

My suspicion on the BlackBerry claim is that what was intercepted was regular SMS messages, and not the secure BB PIN messaging.

The latter is what is super secure, because it traverses via the data link to the BES and is essentially opaque to telcos.

Completely false. You really don't understand the blackberry platform.

Here's a better explanation: http://www.berryreview.com/2010/08/06/faq-blackberry-messenger-pin-messages-are-not-encrypted

PIN messages do NOT go via the BES (blackberry enterprise server). Neither does blackberry messenger (BBM). Both PIN and BBM work fine without a BES, or even if the BES is down.

PIN messages are not encrypted. BBM is encrypted with 3DES, which isn't that strong - the keyspace is small enough to the brute-forced in a reasonable amount of time for anyone with a million dollars of compute power.

What you CAN do with a BES is have AES encrypted email from your office to the blackberry. Good luck brute-forcing that.

The blackberry platform offers many different services, with different levels of encryption.

The really interesting thing would be to know exactly what is disclosed here.

The BES platform remains certified by many organizations: http://us.blackberry.com/business/topics/security/certifications.html

If there is a flaw in the AES implementation that would be news.

most people I know just use regular SMS because they don't know any better. And you can't use PIN messaging outside your own BES network.

False. You don't know any better. You can send PIN messages to any blackberry device (unless sending PIN has been blocked on your device by your admin).

Has Symbian and Blackberry been left out of this feature?

Blackberries have had remote locking/wiping for more than a decade. There are different kinds of wipe though.

The regular device wipe erases the data, but doesn't remove a device policy set by a blackberry server.

Device policy lets an admin do things like requiring a mandatory password, mandatory encryption, deploy wifi & vpn settings, and lots of other handy stuff: http://docs.blackberry.com/en/admin/deliverables/7228/Policy_Reference_Guide.pdf

A "factory reset" will wipe all the data and remove a device policy.

The blackberry has no way to permanently disable itself.

As a developer, I'd find an alternative to Java/Dalvik and Objective-C/iOS pretty appealing.

http://developer.blackberry.com/cascades/.

You're welcome.

My opinion is like this, but less antagonistic. Developers go to three places as far as APIs are concerned:
#1. Where the money is. Sorry blackberry you missed that train. iOS or android is going to be far better in that regard.

And surprisingly you (and most everybody else) would be wrong

#2. Where it's fun. Something about business oriented phone software doesn't call me in that regard.
#3. Where it's really, really, really easy to whip out applications. Maybe, but I doubt it.

If you know C, C++, QT, HTML5, Adobe AIR, or JAVA you can code for BB 10. If you don't want to code for BB 10 specifically but you already publish apps on Android it doesn't get much easier than uploading an APK (yes there are limitations)

beat me to it,
also
http://docs.blackberry.com/en/smartphone_users/deliverables/47561/mwa1334581676005.jsp

Well, looks like you need free upgrades. We did a while back. The new platform manages BB and iOS/Android devices. If you have your BES 5.0 and earlier License CALs lying around, its a free upgrade to their new BES 10.0

https://enterprise.ecomm.webapps.blackberry.com/caltradeup/home.do

Considering, going forward you will need to pay a monthly fee and the Trade Up program give you non-expiring licenses, I think its a worthy upgrade even if you don't intend to run BB in long run. At least you will have new CALs if you so choose to continue.

Blackberry offers BES for iOS and Android (I think): http://us.blackberry.com/business/software/bes.html

-1 troll. I guess I deserved that. I didn't cite any of my sources.

By comparison, BES email is encrypted by default wit AES. Good luck brute-forcing that.

If you're the US government, you can just ask for the key. You wouldn't need to brute-force anything.

"If you’re a BES user, your IT department has the option of encrypting the body — not the the PIN — of your PIN-to-PIN BBM messages with a key unique to the company. By default, however, BBM messages are not encrypted because it restricts PIN-to-PIN BBM communication to only employees of the company, instead, they are scrambled. Scrambling is done with a universal cryptographic key that every BlackBerry has." [source]

Besides if you're not an Enterprise user:

"Your emails between your BlackBerry and the BlackBerry Internet Service are not encrypted. Unlike BlackBerry to BlackBerry communication on BES, BIS email messages are not encrypted before they travel over a mobile carrier’s network. For BIS users, only the mobile carrier’s standard 3G/2G protection applies. " [source]

Riiight. That's why Austria & Turkey have certified the blackberry platforrm: http://ca.blackberry.com/business/topics/security/certifications.htmlTurkey & Austria aren't part of Echelon. Look, if you want to criticize the blackberry, at least choose things that are true.

That does not negate what I said. I also never implied that Austria and Turkey were part of Echelon. Here is the citation for the French government. I also believe Germany and Sweden have issued similar statements.

The BB users don't really see or care much about the server side of things, but corporate I.T. sure does. Traditionally, small businesses were in for a pretty serious expense if they wanted to add BES to the corporate Exchange server. The last small business I worked at went with Android and iPhone but never Blackberry for that reason alone. The cellular plans and user support were enough of a hassle without adding the high licensing cost of the BES product on top of all of it.

Ummm, a number of years ago RIM came out with BES Express, which is completely free: http://us.blackberry.com/business/software/besx.html

Is free within your budget?

BES Express has most of the features you're looking for, and all the security features of the full-blown BES.

I didn't say it was complex and difficult for me. I said the software licensing and support were an expensive mess.

A number of years ago, RIM came out with BES Express, which is completely free (and supports up to 2000 devices):

http://us.blackberry.com/business/software/besx.html

Is zero dollars too much for your company to spend?

BES Express doesn't have the full BES feature set, but it does include all the security features, and the BES features that most people use.

By default, large enterprise-level organizations end up not setting up their own encryption key on BBMs, because if they did, their messages couldn't be read outside of their organization. Unfortunately, their BES system is not smart enough to specially encrypt only some messages, and not encrypt others.

Actually, BBM messages are not sent via the BES, BBM is independent and works without a BES.

Further, did you ever read RIM's documentation about BBM? BBM is encrypted with 3des, and 3des is easily brute-forceable with $1M of computer power (well within the budget of governments & companies).

By comparison, BES email is encrypted by default wit AES. Good luck brute-forcing that.

And it's no wonder that several European countries believe that RIM (now Blackberry) is just a front for the US/UK/Canadian/Australian Echelon program.

Riiight. That's why Austria & Turkey have certified the blackberry platforrm: http://ca.blackberry.com/business/topics/security/certifications.html

Turkey & Austria aren't part of Echelon.

Look, if you want to criticize the blackberry, at least choose things that are true.

End users do not want to give up *any* control over their devices.

Your argument is irrelevant. If you want to connect to an enterprise network you are granting permission for them to control your experience. That's why BlackBerry developed BB Balance With Balance you get 2 phones in 1. Why should they have this control? Because people in general can't be trusted to always think of the company first. Multiply that fact by a few thousand and the potential for a security breach grows exponentially. It's not that they want to destroy the company (but some actually do) but they don't always understand that what they are doing may negatively impact the company.

At the end of the day there isn't anything that a fancy BES system and draconian lock down provides that we don't already have

You just told me the only thing you use the phones for is email and messaging and you don't even allow attachments. That tells me you don't know what a BES is or does.

"The BlackBerry Runtime for Android Apps supports Android 2.3.3 applications" and this should speed-up the number of available apps for BB. Android 2.3.3 features that aren't supported are listed here.

They already did this:

https://developer.blackberry.com/builtforblackberry/documentation/10kcommitment.html

They even sent me a free tablet on the hopes I'd build an app for them.

http://www.madewithmarmalade.com/press/rim-and-marmalade-offer-developers-free-sdk-licences-and-blackberry-playbook-tablet

It was a pretty sweet deal I have to admit.

So instead of spending the fortune on building a new handset/OS, they should have spent time and money developing a decent mobile management server, with associated mobile clients for android, iphone and MS kit ( with plugins for the various data sources; exchange, groupwise, ect... ).

They could have parleyed their reputation on to the entire mobile market for business handhelds, instead of floating a NEW hand held in an already contentious market.

They did.

There's a pretty significant subset of the Android API that's not supported, but if you're app doesn't use any of those then it should be as simple as clicking compile. Frankly I'm surprised they got so many taker, Amazon has an app store that literally only requires a re-upload of the file you sent to the Google Play Store and yet it has a tiny fraction of the apps, I figured a recompile would be too much work (and for the majority of apps it probably will be in the long run).

I figured someone would describe a bit about how to develop for the BB. Of course this being slashot we have instead fanboi rants from all directions. In any case, you can see it here:
https://developer.blackberry.com/develop/platform_choice/bb10.html

C/C++
Java
C++/QT
AIR
HTML5

are supported.

If you don't trust Nokia to not snoop on your data then why are you carrying around a device made by Nokia

I don't.

I carry a device (blackberry) made by a trustworthy company (Research In Motion) that has been tested, audited & certified:

http://us.blackberry.com/business/topics/security/certifications.html

Apple & android have been tested, audited & certified by ... nobody.

It's sad that so many people don't care about security, especially when they are putting their entire life on their smartphone.

You obviously know nothing of BB security using a BES

Get a BlackBerry.
Blast them all you want for getting left behind in the app ecosystem but iOS, Android, and WP can't hold a candle to RIM's security.

Get a BlackBerry.
Blast them all you want for getting left behind in the app ecosystem but iOS, Android, and WP can't hold a candle to RIM's security.

It's funny how problems that companies are experiencing today were addressed by RIM YEARS ago. Funny Apple and Google chose to ignore this...unless of course they never intended to address the enterprise market.

Don't want your employees playing games (or other time wasting activities) on their phones during working hours - There's a BES policy for that

Need to ensure your office is shutterbug free - There's a BES policy for that

Need a way to allow your employees to have personal information and work information on the same device but kept separate - There's a BES policy for that

I'm sorry but having to have your camera physically removed/disabled is ludicrous in this day and age. Even having to go to the local carrier to have a block installed is borderline insanity. BYOD is going to bring some enterprise to its knees and there will be outcries that something must be done to protect sensitive data. Companies are already lining up to provide solutions to problems created by iOS and Android not addressing security up front.

MY answer to the question is - Does your job benefit from you having a smart device with you? If yes then they need to provide it pre-configured to best serve their needs or reimburse you for bringing your own device. If you are just bringing a personal device for personal use then they have the right to restrict its use while on their time and property. Years ago I was studying for my EE degree. I had a job working for Compaq on their assembly line. I was not allowed to have my books at my station even though there was an area under the station for personal items. I had planned to study during breaks but was informed that would not be allowed. It was their right. It was my right to quit so I did after about a week when I had found another job.

this person is claiming that a single tool works for them... this single tool replaces a laptop.. but yet it doesnt have all the features or capabilities of a laptop..

Funny, that's not what the OP said at all. Personally I use my tablet (BlackBerry PlayBook FTW) to access my Dell Precision T7400 with Splashtop when I need to do some heavy lifting. With a BT keyboard and mouse it works just as well as a laptop. Do I keep my LT around for some things? Sure do, but the number of times I have pulled it out since I got my tablet are counted in single digits. I use my phone for as much as possible simply due to convenience but there are times a bigger screen is needed and the tablet is ready in an instant.

On my PlayBook and BB 10...Yes I Can!

It's already available.

Pretty much. Wasn't this feature announced months ago? I see it posted as far back as August on some sites. This isn't even news.

It's already available.

It's no different than the Google Play store except that it's in BlackBerry App World...or were you referring to sideloading them? In which case they are equally as hard on Android and MORE difficult on iOS.

FYI: The link references apps by Handster. They repackage Android software for other developers. There are other ISVs with Android apps on App World as well.

Blackberry users EXPECT security to be baked in. RIM knew this and couldn't deliver a full blown messaging system with that security in such a short time frame so they provided the Blackberry Bridge which allowed for your already secure messaging on your Blackberry phone to link to the PlayBook with the security intact. when they added the messaging this year I set my accounts up and quickly realized it wasn't nearly as good as it already was with the Bridge. That's why they pushed BB 10 back so far. They don't want a repeat of the bad press that sank the PlayBook sales. What's interesting is the Bridge app isn't locked to only the PlayBook. If you had a BB with Bridge installed you could pair it with your Galaxy Tab or iPad (Bridge uses Bluetooth) and use the remote control feature. (good luck getting apple to allow iTunes to work with a non iOS device) For anybody who appreciates BB keyboards this is a nice addition.

BB10 will have the Android Runtime that came with the PlayBook, so most Android apps will be able to be ported quickly (assuming the developers get round to it). This should give RIM a massive leg-up on populating their app store quickly, albeit with some inconsistent-UI issues.

So write it for Android, then take the 20 minutes to repackage it for BB10. http://developer.blackberry.com/android/

Looks like BlackBerry 10 is well on their way to supporting Android apps as I talked about. Probably won't save them, but it might keep their current customers who are tempted to leave for Android:

http://developer.blackberry.com/android/tools

In other news, RIM just renamed one of its Blackberry10 SDKs to LittleGreenRobotWithTwoAntennas Development Kit (LDK).

Given that BlackBerry apps earn the most money, it's not a tough decision for developers to make.

But how about when RIM stops paying people to develop for BB10? Will it still be worth doing? And will that link still go to a 404 page?

There has been an app named "What'sUp" on the Blackberry Playbook tablets for more than one year that shows this and far more, allowing you for instance to point the tablet to the sky and show exactly which stars are in that direction at this time.

It's a classical example of using all the sensors (GPS, gravity and magnetic).

As far as I remember, nobody kneeled at the time.

Ah yes, it was not GOOGLE-branded. Sorry, mod me flamebait, quick, before thinking.

Link to the Blackberry App world: https://appworld.blackberry.com/webstore/content/48561/?model=PlayBook&lang=en

I am not fond of a device that is not something I can examine, requires outside service to deliver my mail.

A number of years ago RIM came our with BES express, which is completely free (as in beer) and provides most of the BES functionality, in particular all the security & encryption functionality.

Yes, you do need a data plan from your mobile carrier, but you would need that for any mobile device.

Made by a company shown to give away keys to tinpot dictators.

A company that complies with the laws of the countries in which it operates. Any company has to do that. Google recently handed over Petraeus' gmail to the FBI, even without a search warrant.

Part of the beauty of the BES architecture is that with a BES, RIM does NOT have the encryption keys.

So even if a tinpot government comes with a court order (or heavily armed soldiers), RIM can't hand over the BES encryption keys, because RIM does NOT have them. Many people & governments have trouble understanding that RIM doesn't have the keys..

If a mobile management server requires a course you did it wrong.

It doesn't require a course, but it does require some knowledge or the ability to read documentation (RIM provides extensive documentation). RIM also offers support contracts.

Much the same way that effectively managing Exchange, Notes, Groupwise, sharepoint, or sql server requires some IT knowledge or the ability to read documentation.

The only thing that I can imagine RIM doing to stay competitive is to license their Blackberry software while they still can.

They actually did do that many years ago, it was called Blackberry Connect:

http://us.blackberry.com/company/blackberry-connect.html
http://www.blackberryfaq.com/index.php/BlackBerry_Connect

Maybe a dozen handsets offered it.

BES servers are already disappearing fast. The BES server is a big part of what is killing RIM. Why have another crap product between you and your email?

I am quite fond of another product between me and my email that is audited, certified, provides AES encryption and real push email.

No one wants to resend servicebooks or have to reboot the BES and disconnect all users when one stops getting his mail.

Dude, if that's what you were doing then you aren't doing it right.

That's like wiping an entire computer, reinstalling the OS, and reinstalling all the applications when a print driver malfunctions. Far more efficient to remove the print driver and add it again.

You could read the BES documentation or you could take a course in BES administration.

Now, how would Microsoft feel about doing that . . . is another matter . . . but it would get folks like me to try to develop for it. And, *gasp*, maybe folks might even like it . . . ?

RIM has already done it - it's that easy for BB10. Give it a try ;)

https://developer.blackberry.com/develop/platform_choice/bb10.html

I'm guessing he didn't realize the mistake until the handcuffs were put on him.

It appears possible via the broadcast message feature, where the recipients can't respond: Blackberry Broadcast Messages

RIM's new OS is not Android BUT IT CAN RUN Android apps http://developer.blackberry.com/android/

That's why I find it an interesting comparison

from my understanding (BB mobile fusion http://us.blackberry.com/business/software/blackberry-mobile-fusion.html#tab-1 )... and since i havnt deployed, just read some info, take with a grain of salt.
there is a separate manager for iPhone and droid devices to deploy BB software to apple store and play store (droid?) and to centrally rule them all through one console. That way if your corporate infrastructure allows for multi-brand (bb, Apple, Droid) phones you can mange them from one location.

I've heard rumors that the new phones won't support BES natively, but be part of a new overall BES architecture. Where the "new" BES will be a management console for the "old" BES that you all know and love, and a VPN like service for the new phones/playbook.

IMHO this will help kill BB. The one solid thing you could count on was BES, now you're adding complexity with multiple BES servers, multiple UIs, and hoping it all gels together while you're trying to keep your head above water. That, and the consumer market is shut out as people with Galaxy S3s and iPhone 5s are locked up on 2 year contracts.

RIM is toast.

I'm sure it's quite a few:

MAC OSX
Windows
Android
iOS
BB OS

Which is not available to us mere mortals. So Blackberry is out of the picture for security.

Really?

The full Blackberry Enterprise Server isn't cheap, but the Blackberry Enterprise Server Express includes most of the features (including all the security features), and it is completely free: http://us.blackberry.com/business/software/besx.html . That is free as in zero, zilch, nada.

If free is too expensive for you, how did you purchase your smartphone?

Except for the you-must-give-RIM-your-email-password-to-get-email bit, sure.

Not really, RIM has two services for email, BIS (blackberry internet service) and BES (blackberry enterprise service). People often get them confused.

With BIS, you give RIM your email password and RIM relays email to/from your device. In this case, RIM could read your email.

With BES, RIM does not have your email password or decryption keys. RIM just forwards the encrypted message much like the mobile carrier or your ISP.

I don't see how trusting RIM is more secure than trusting Apple/Google/etc.

Because you don't need to trust RIM with the BES platform.

That is the part many people & governments have trouble understanding. If you show up at RIM with a court order to hand over someone's BES email, RIM does not have the decryption keys or cleartext messages. BES was designed that way.

Also, the BES platform has been audited, tested & certified from end to end by many govt and non-govt organizations: http://us.blackberry.com/business/topics/security/certifications.html

Iphone & Andriod have been certified by... nobody.

Why is RIM's option any more secure than using Exchange Activesync over HTTPS?

The security of Exchange Activesync over HTTPS depends on the email client recognizing an invalid certificate, and on certificate authorities not issuing fake or duplicate certificates.

1. It has been demonstrated many times that certificate authorities sometimes issue certificates they aren't supposed to, either by themselves or through resellers. I'm sure some certificate authorities would issue fake certificates if asked/compelled by a government.

2. Sometimes fake certificates can be issued that appear to be genuine: http://www.pcworld.com/businesscenter/article/256742/flame_spread_via_rogue_microsoft_security_certificates.html

3. Many users, when prompted with an invalid certificate warning will just click ok.

That's why.

I don't get the big deal when it comes to supposed BB security.

The blackberry platform from end-to-end has been audited, tested and certified by many government & non-government agencies:

http://us.blackberry.com/business/topics/security/certifications.html

Iphone has been audited, tested and certified by... nobody.