Discussion on:
View:
Show:
They have not caught up with BB in my mind until they get FIPS140-2.
ROTFLMAO!!!!
If this is the case, why has my company placed strict security policies on the device and limited what it can do (no Siri, limited iCloud, etc..), custom login screen passwords and other measures. Locked and watched to the point I refuse to use it as anything or than a company device.
So yeah, they can get close with modification.
btw; I am back to carrying two phones again. iPhone for work, GNexus for personal.
If this is the case, why has my company placed strict security policies on the device and limited what it can do (no Siri, limited iCloud, etc..), custom login screen passwords and other measures. Locked and watched to the point I refuse to use it as anything or than a company device.
So yeah, they can get close with modification.
btw; I am back to carrying two phones again. iPhone for work, GNexus for personal.
The devil is in the details.
Apple has released some nice API hooks for MDM solutions to leverage that can achieve similar restrictions as BES to Blackberry. But the overall security of iOS cannot match BB OS or likely BB10. I can hand an iPhone to our forensic group and within 30 mins or less they can get access to the device, pull all data off it, logs, cache etc. The iPhone takes a snapshot of the screen every few seconds to speed up the transition effect.
Now if you deploy something like Good Technoloy (which more and more companies are doing) you could achieve the BES as Good uses AES, has FIPS, a NOC etc. This comes with a hefty price as Good is presently 3x the BES CAL cost.
This does nothing to secure the larger issue. Apps. Users love them. Their going to want to put corporate data into all kinds of Apps which some use Apple data protection API, so don't. Unlike RIM you have no control over these Apps outside of shutting off AppStore.
At the end of the day no employee wants a restricted iPhone anymore than they wanted a restricted Blackberry. Exspecially if it's their own personal iPhone. Thus you'll see more and more companies only providing virtual access to company data via VM VDI, Citrix and similar. To me this totally negates the benefit of using iPhone. The more is layered on the "secure" iPhone the less appealing it is. Thus why we now have employees with a corporate iPhone and their own.
BYOD is not about employee choice, it's really about employees not wanting to adhere to security and compliance controls. To them it gets in their way of being "productive", be damned those stupid regulations the company needs to follow. The other side is companies now see BYOD as a way to off load enterprise mobile expenses on the employee. It should be a win - win right?
The more things change, the more they stay the same. Apple and Android are primarily a consumer based entertainment company. RIM was and remains an enterprise solution. Sure consumers embraced it as smartphone usage grew but it was moreso a status symbol than being useful (though to this day I'm way more productive with a Blackberry).
Apple has released some nice API hooks for MDM solutions to leverage that can achieve similar restrictions as BES to Blackberry. But the overall security of iOS cannot match BB OS or likely BB10. I can hand an iPhone to our forensic group and within 30 mins or less they can get access to the device, pull all data off it, logs, cache etc. The iPhone takes a snapshot of the screen every few seconds to speed up the transition effect.
Now if you deploy something like Good Technoloy (which more and more companies are doing) you could achieve the BES as Good uses AES, has FIPS, a NOC etc. This comes with a hefty price as Good is presently 3x the BES CAL cost.
This does nothing to secure the larger issue. Apps. Users love them. Their going to want to put corporate data into all kinds of Apps which some use Apple data protection API, so don't. Unlike RIM you have no control over these Apps outside of shutting off AppStore.
At the end of the day no employee wants a restricted iPhone anymore than they wanted a restricted Blackberry. Exspecially if it's their own personal iPhone. Thus you'll see more and more companies only providing virtual access to company data via VM VDI, Citrix and similar. To me this totally negates the benefit of using iPhone. The more is layered on the "secure" iPhone the less appealing it is. Thus why we now have employees with a corporate iPhone and their own.
BYOD is not about employee choice, it's really about employees not wanting to adhere to security and compliance controls. To them it gets in their way of being "productive", be damned those stupid regulations the company needs to follow. The other side is companies now see BYOD as a way to off load enterprise mobile expenses on the employee. It should be a win - win right?
The more things change, the more they stay the same. Apple and Android are primarily a consumer based entertainment company. RIM was and remains an enterprise solution. Sure consumers embraced it as smartphone usage grew but it was moreso a status symbol than being useful (though to this day I'm way more productive with a Blackberry).
So which iPhone5 features make it "now" more secure then iPhone4 and as "secure as BlackBerry" ? This article does not reveal any.
The article doesn't state that the improvements stem only from the iPhone 5, rather that since the iPhone's launch in 2007 the addition of the security features listed in the third par have led to the perception among IT directors that the iPhone can match BlackBerry handsets for security.
That perception that iPhone can provide good enough security for many workplaces is backed up by the assessment by the security vendor Trend Micro referenced in the article - see: http://www.trendmicro.es/media/wp/ent-readiness-mobile-platforms-whitepaper-en.pdf
What IT directors think matters as they are they have sway over whether iPhones can be used to access work systems.
That perception that iPhone can provide good enough security for many workplaces is backed up by the assessment by the security vendor Trend Micro referenced in the article - see: http://www.trendmicro.es/media/wp/ent-readiness-mobile-platforms-whitepaper-en.pdf
What IT directors think matters as they are they have sway over whether iPhones can be used to access work systems.
MobileAdmin,
I couldn't agree more.
The employees (and execs) screaming for BYOD and better productivity are also the first ones to crucify the IT Security department when their data is corrupted or compromised.
They want to know how someone could access the company data via their BYOD after you've told them this is a disaster waiting to happen.
It's an unsecure device and infrastructure.
Security is in place for a reason.
Controls are in place for a reason.
Once the genie is out of the bottle, all bets are off...
I couldn't agree more.
The employees (and execs) screaming for BYOD and better productivity are also the first ones to crucify the IT Security department when their data is corrupted or compromised.
They want to know how someone could access the company data via their BYOD after you've told them this is a disaster waiting to happen.
It's an unsecure device and infrastructure.
Security is in place for a reason.
Controls are in place for a reason.
Once the genie is out of the bottle, all bets are off...
Even with those supposedly tight controls, data gets stolen on a pretty regular basis anyway--even without bringing mobile devices into the equation. Considering many of the systems already on or available to iOS, it certainly is no worse than what's already in use. At least an iOS device can be wiped remotely--something that doesn't seem to be getting used on those laptops.
You can never be 100% bulletproof, but you don't want to open up more holes in your security because a user wants to play Angry Birds on their phone.
A smart phone is for calls, emails, and texting.
I love it when a user says they "need" an iPhone or Android phone to be more productive.
Yet when I press them on HOW this would make them more productive, they stammer and can't come up with one reason.
Coolness, comfort, and "because everyone else has one" are not valid reasons to add more avenues for breaches and data loss.
That's the reason people don't like the IT Security department, but we do know what's best for the security of the company.
It's our job to know, not a so-called computer expert working in accounting or engineering...
A smart phone is for calls, emails, and texting.
I love it when a user says they "need" an iPhone or Android phone to be more productive.
Yet when I press them on HOW this would make them more productive, they stammer and can't come up with one reason.
Coolness, comfort, and "because everyone else has one" are not valid reasons to add more avenues for breaches and data loss.
That's the reason people don't like the IT Security department, but we do know what's best for the security of the company.
It's our job to know, not a so-called computer expert working in accounting or engineering...
Calendar access wherever they are--something a feature phone has difficulty with. Email is easier on a smart phone too--when you're away from the office. Also, other apps (not necessarily games) offer other advantages that could give that user an edge depending on their specific duties and tasks.
Better if you think of a smart phone as a supplemental device to their computer than as just a communications device.
Better if you think of a smart phone as a supplemental device to their computer than as just a communications device.
Or perhaps the logical answer is to go with an industry leading mobile mail provider such as IBM who can provide you with secure and encrypted email at device level, IOS, BB, Android, Windows, all tablets.. with a consistent look and feel, and also provide complete Mobile Device Management so you can lock down your companies policy and remotely wipe all or only corporate data should a device become lost or stolen. No more security, policy or security worries
One guy says the iPhone is better. The phone isn't even out. *IF* he has one, has it actually been tested in a normal environment?
I can say the Surface tablet will be thest out there but I haven't test it.
I can say the Surface tablet will be thest out there but I haven't test it.
I've done pretty extensive research between RIM and Apple, and I'm an Apple fanboy, and Apple has a ways to go to catch up. There is no full device encryption for iOS, just Apple Data Protection, and very very few programs take advantage of that. You cannot restrict built in apps, like Notes from syncing to say, Google. The granularity of controls on iOS just isn't nearly as robust as with RIM?
That as said, what phone do I use? iPhone. But I don't use an iPad for work as there is no way for me to edit a document and keep the document encrypted. Also, Apple's iOS isn't FIPS 140 validated (although that is in the works). Once it's validated, there are still precious few programs that take advantage of the encryption. Having to rely on end users to know what's encrypted and what isn't is NOT a good security model. Even worse, there no way to tell what's encrypted and how; you have to just know.
That as said, what phone do I use? iPhone. But I don't use an iPad for work as there is no way for me to edit a document and keep the document encrypted. Also, Apple's iOS isn't FIPS 140 validated (although that is in the works). Once it's validated, there are still precious few programs that take advantage of the encryption. Having to rely on end users to know what's encrypted and what isn't is NOT a good security model. Even worse, there no way to tell what's encrypted and how; you have to just know.
- Keyboard Shortcuts:
- Prev
- Next
- Toggle
