Mobile Device Security The next challenge Jan Guldentops ( [email protected] ) BA N.V. ( http://www.ba.be )
Jan 14, 2015
Mobile Device SecurityThe next challenge
Jan Guldentops ( [email protected] )BA N.V. ( http://www.ba.be )
About BA
More information
Information Integrationi
Our Commitment Ask our partners
Our Commitment Ask our clients
Public Sector/Government
Non-profit
Enterprise
Association Vincotte Nuclear, Idewe, Handicap international, Jeugd en Stad Vzw)
Hamburger Mannheimer, Didak Injection, Credimo, Nollekens (PGZ International), Altrad Havico, Paratel, Sodexo, Securex
Vlaams Parlement, Leuven, Hasselt, Boom, Overpelt, Mortsel, Ranst, Lummen, Olen, St-Katelijne-Waver, Kasterlee, Oud-Turnhout, OCMW Kontich, PZ Noord, Balen, Schoten, Zwijndrecht, KBR
Information Integration BA’s infrastructure for:
Digitisation
SecurityMobility
VirtualisationData Storage and Warehousing
Data Protection and Integrity
Digital Preservation and Archiving
Data Access and Portability
Traditional Security-model is gone forever
There is no perimeter anymore...
Users are accessing data/app(lication)sFrom everywhere
From all kinds of devices
There are no sure bets in the mobile device market
King today, beggar tomorrow(e.g. RIM, Nokia)
What will happen to Apple now Steve is dead ?
Will Nokia rise from the grave by selling its soul to the devil ?
End-user rules...
ICT/security has to follow not lead
End-user decides which (cloud) apps/device he or she is going to use
Wants to have that sexy device that fiits his personality...
BYOD
Bring your own device
Let users buy their own phone, tablet or laptop
Make IT support it
Most secure devices
1. Blackberry 2. iOS
3. Symbian 4. Android
5. Windows Phone
Armsrace
The security feature list is continuously evolving version by version.
IOS5 and Android 4 look very promising
Windows Phone is too early days
Security should be in the device OS itself and not added by extra software
Mobile security = big business
All antivirus vendors have a mobile solutionKaspersky (not for Ios), Gdata & Symantec (only android), etc.
Lots of mobile device management platforms out there
Mobile Iron, Zenprise, Good technologies, Kaspersky
Problems to fear / fix
DATA LEAKAGEEncrypt / remote wipe
Don't store confidential data on the device
MALWAREUpdate your os
Control the dev community / signingWalled gardens / sandboxes
Problems to fear / fix (2)
STRONG AUTHENTICATIONPassword policiesBetter: certificates
CONTROLControll the apps/usage of your endusers
BACKUPS
Conclusions
The ghost is out of the bottle, no way back Go for a crossplatform solution
Control what you can controlBYOD will happen so prepare for it
Conclusions
First you need a good policyWhat level of security do you want/have to accomplish?
Riskanalysis – is this possible ?Plan for the worse
Then find the tools to do itFirst tool is common sense (be smart)
Look at the management solutions
Thank YouContact us
016/29.80.45
016/29.80.46
www.ba.be
Vaartdijk 3/501 B-3018 Wijgmaal, Belgium
www.ba.bewww.ba.be
Twitter: JanGuldentops