IoT
Mobile
News
10/25/2011
02:42 PM
50%
50%

Pocket Guide To Securing Mobile Devices

With workers bringing their own smartphones and tablets into the company, IT security needs to focus on creating a more secure environment, not on securing each device.

10 Companies Driving Mobile Security
10 Companies Driving Mobile Security
(click image for larger view and for slideshow)
Smartphones, tablets, and other mobile devices are forcing enterprise IT managers to re-evaluate how they secure technology.

With workers more likely to use a personal device for work, companies are less likely to be able to specifically configure the mobile devices that have access to the corporate network. Add to that the fact the software ecosystem surrounding mobile devices is, to a large degree and depending on platform, closed. Less access means attackers have a harder time hacking the devices, but that also means third-party firms are harder pressed to provide solutions to the problems mobile devices do have.

For those reasons, the recommendations are that, rather than focus on securing each device, IT groups should look to educate users, set good security policies, secure access, and help manage the devices, said John Engels, principal product management for Symantec's enterprise mobility group.

"We are trying to surround the devices with security and protect and control what goes into the device and what comes out of it," Engels said.

A key component to the approach is mobile device management (MDM), which initially took off as a way to keep track of all the costs associated with a company's gaggle of cell phones, but increasingly has a security role as well.

The four major threats to mobile devices are device theft (or forgetful employees), wireless network sniffing of communications, malicious software, and the infrequent direct attack. Of those four major threats, however, MDM mainly solves only one: lost and stolen devices, said Dan Hoffman, chief mobile security analyst for Juniper Networks.

"When you look at mobile device management, it does nothing for malware, nothing for a direct attack, and nothing for data communication interception," Hoffman said.

For that reason, companies have to look beyond just adopting MDM solutions, he said. Here are four recommendations:

1. Know the threats.
As any carny knows, the easiest mark is one who is not paying attention.

Read the rest of this article on Dark Reading.

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
InformationWeek Elite 100
InformationWeek Elite 100
Our data shows these innovators using digital technology in two key areas: providing better products and cutting costs. Almost half of them expect to introduce a new IT-led product this year, and 46% are using technology to make business processes more efficient.
Register for InformationWeek Newsletters
White Papers
Current Issue
Top IT Trends to Watch in Financial Services
IT pros at banks, investment houses, insurance companies, and other financial services organizations are focused on a range of issues, from peer-to-peer lending to cybersecurity to performance, agility, and compliance. It all matters.
Video
Slideshows
Twitter Feed
InformationWeek Radio
Archived InformationWeek Radio
Join us for a roundup of the top stories on InformationWeek.com for the week of July 17, 2016. We'll be talking with the InformationWeek.com editors and correspondents who brought you the top stories of the week to get the "story behind the story."
Sponsored Live Streaming Video
Everything You've Been Told About Mobility Is Wrong
Attend this video symposium with Sean Wisdom, Global Director of Mobility Solutions, and learn about how you can harness powerful new products to mobilize your business potential.