On 2011-10-20 06:00, Charles Clancy wrote: <snip> > For Blackberry, both the OS and the secure email apps have vetted crypto > implementations. For Android only the apps have been vetted (a number > of secure VOIP and email apps) which is creating a policy hurdle for > those wishing to deploy Android within the military.
Does Blackberry devices make it possible to discriminate apps usage of a key?` IMO, this is a another prerequisite for secure usage of keys in mobile phones. Another prerequisite is to be able to enroll keys remotely and be sure that they indeed reside/are created in the secure key-store. AFAIK, FIPS-140 does not address these issues at all but I'm (surely) not an authority of this. Anders -- You received this message because you are subscribed to the Google Groups "Android Security Discussions" group. To post to this group, send email to [email protected]. To unsubscribe from this group, send email to [email protected]. For more options, visit this group at http://groups.google.com/group/android-security-discuss?hl=en.
