Set whether your browser only accepts and sends data that is encrypted using 128-bit encryption. To only accept and send data that is encrypted using 128-bit encryption, set this field to Strong Only. To accept and send data that is encrypted using 128-bit encryption or 56-bit encryption, set this field to Allow Weak.

Allow FIPS Algorithms Only:

Set whether your browser accepts and sends data that is encrypted using only FIPS-approved algorithms.

Prompt for Server Trust:

Set whether a prompt appears when your browser tries to connect to an untrusted content server that your device does not have a authentication certificate for.

Prompt for Domain Name:

Set whether a prompt appears when your browser tries to connect to a content server and the domain name on the authentication certificate for the content server does not match the web address to which the browser is trying to connect.

Prompt for Certificate:

Set whether a prompt appears when your browser tries to connect to a content server. You might want a prompt to appear if your device has more than one certificate that you use to authenticate with content servers.

Prompt if Client Cert Not Found:

Set whether a prompt appears when your browser tries to connect to a content server, but your device does not have a certificate that can be used to authenticate with the content server.

Default Client Certificate:

Set the certificate that your browser uses to authenticate with content servers.

WTLS options

Encryption Strength:

Set whether your browser only accepts and sends data that is encrypted using 128-bit encryption. To only accept and send data that is encrypted using 128-bit encryption, set this field to Strong Only. To accept and send data that is encrypted using 128-bit encryption or 56-bit encryption, set this field to Allow Weak.

Prompt for Server Trust:

Set whether a prompt appears when your browser tries to connect to an untrusted content server that your device does not have a authentication certificate for.

Add a trusted content server

Add content servers to your trusted content server list to accelerate the authentication process when you are authenticating with a content server.

1.In the device options, click Security Options.

2.Click TLS.

3.Click the trackwheel.

4.Click Add Host.

5.Perform one of the following actions:

If the TLS Default field is set to Proxy, in the Host Name field, type the web address for the content server.

If the TLS Default field is set to Handheld, in the Host Name field, type the web address for the content server. Set the Certificate field to the client certificate that you want to use to authenticate with the content server.

6.Click OK.

119

Page 121
Image 121
Blackberry 8707 Series manual Wtls options, Add a trusted content server