2012 May Archive

CIO Challenge : Mobile Device Management (MDM)

For an MDM primer, see Gartner’s Critical Capabilities for Mobile Device Management, including top providers, use cases, and analysis across 10 critical capabilities:

Key Findings

-Not all MDM platforms provide device encryption if it is not supported natively on the device.

-Although containerized approaches offer some of the highest security, restrictions to the user’s experience with mobile email may limit the user’s acceptability and viability on personal devices.

-AirWatch, BoxTone, Fiberlink, MobileIron, Sybase and Zenprise use native Apple iOS 4 management APIs to implement functions such as over-the-air (OTA) software upgrades and certificate-based authentication.

-Good for Enterprise is a mobility suite centered on wireless email; many management and security capabilities are available within their email client only.

Recommendations

-Choose MDM offerings that support a lightweight management approach, with mobile agents and server-side platforms, when your security and management requirements are limited and deep control is not accepted by employees using personal devices. Examples include Zenprise, MobileIron, BoxTone, Fiberlink and AirWatch.

-Choose MDM offerings that support a heavyweight approach to deliver secure and manageable corporate email to consumer and personal devices when strict security and compliance requirements apply. Containers can enforce stronger separation among personal and corporate content. Examples include Good Technology, Excitor and Sybase.

-The iPhone 3GS and later hardware platforms ship with always-on hardware encryption. When iOS 4.2 was introduced, it added a new data protection class that allows third-party applications to manage their own encryption keys, reducing the risk of data leakage on a jailbroken device. The new data protection classes are activated upon the full installation of iOS 4 or later.

©2010-2014 LiveCirrus Inc.