SAP - SAP İLE MOBİL CİHAZLAR GÜVENDE - SAP Forum 2013
-
Upload
sap-turkiye -
Category
Technology
-
view
377 -
download
4
description
Transcript of SAP - SAP İLE MOBİL CİHAZLAR GÜVENDE - SAP Forum 2013
SAP FORUM İSTANBUL Gelecek Bugün
Laurent Rieu
SAP
SAP İLE MOBİL CİHAZLAR GÜVENDE
Taking Mobile Security To The Next Level With
SAP Mobile Secure September 20th – SAP Forum Istanbul
Laurent Rieu
Director – Business Development EMEA – SAP Mobile Solutions
© 2013 SAP AG. All rights reserved. 5 Public
Trends impacting how mobile devices are managed
Cloud-based mobility services gaining momentum
Device ownership and use models changing
Mobile first and mobile only increasingly common
Increasing quantity of information to and from mobile devices 1100101 1011010 0100101
Ever-changing privacy requirements
© 2013 SAP AG. All rights reserved. 6 Public
Single sign on Per-app VPN
Managed App Configuration
App provisioning User authentication
Devic
e
encry
ption
Ap
p
dis
trib
uti
on
Asset tracking
Passcode control
Jailbreak detection
Content Management
Vers
ion
contr
ol
Co
nte
nt
en
cry
pti
on
Certificate
management App wrapping Email provisioning
Enterprise Mobile Management: Scratching The Surface…
© 2013 SAP AG. All rights reserved. 7 Public
Mobile Security In An Ever Changing World…
© 2013 SAP AG. All rights reserved. 8 Public
SAP Mobile Secure Industry’s First Comprehensive Mobile Security and Management Suite
Mobile Security
Device
Application
Content
Services
Enterprise Mobility Management System
SAP Mobile Secure
On Premise Hybrid Cloud
© 2013 SAP AG. All rights reserved. 9 Public
SAP Mobile Secure
SAP Afaria
Secure mobile devices
SAP Mobile
Documents
Secure Mobile Content
SAP Mobile
App Protection by Mocana
Secure Mobile Apps
© 2013 SAP AG. All rights reserved. 10 Public
Securing devices: SAP Afaria
SAP Afaria is the trusted solution to manage and secure deployments of mobile devices for any size of
company – in the cloud or on-premise
Use built-in robust analytics
for instant insight into mobile
device usage and the ability to
take immediate action
Meet the requirements of the
world’s largest enterprises.
Remotely lock and wipe
managed devices, control
security settings for bring-
your-own-device (BYOD) or
corporate-owned devices
Quickly self-enroll devices for
enterprise use; have control
needed by pre-configuring
settings and enforcing security
and compliance policies
Robust analytics Mobile device management Highly secure and scalable
© 2013 SAP AG. All rights reserved. 11 Public
Hewlett Packard Chooses SAP To Manage Over 180k Devices
© 2013 SAP AG. All rights reserved. 13 Public
SAP Mobile Secure
SAP Afaria
Secure mobile devices
SAP Mobile
Documents
Secure Mobile Content
SAP Mobile
App Protection by Mocana
Secure Mobile Apps
© 2013 SAP AG. All rights reserved. 14 Public
Securing content: SAP Mobile Documents
HTTP XML
iWork
Share files with teams,
colleagues, and business
partners from anywhere
Discover and access content
from corporate document
management systems
Access personal business
documents instantly on your
laptop or any mobile device
Share my files My files – any device Corporate content access
SAP Mobile Documents is designed for enterprise deployments where collaboration, security, and
control of business content are critical. Users enjoy anytime, anywhere access to view and collaborate
on personal and corporate content, in an easy-to-use, native mobile app
© 2013 SAP AG. All rights reserved. 15 Public
Android: The Malware Threat
© 2013 SAP AG. All rights reserved. 16 Public
Is This REALLY Enough?
© 2013 SAP AG. All rights reserved. 17 Public
Jekyll Applications On iOS
Source: Georgia Institute of Technology
© 2013 SAP AG. All rights reserved. 18 Public
SAP Mobile Secure
SAP Afaria
Secure mobile devices
SAP Mobile
Documents
Secure Mobile Content
SAP Mobile
App Protection by Mocana
Secure Mobile Apps
© 2013 SAP AG. All rights reserved. 19 Public
Securing Apps: SAP Mobile App Protection by Mocana
SAP Mobile App Protection by Mocana helps organizations accelerate mobile initiatives by automating
app security. App-wrapping technology enables enterprises to quickly secure existing corporate and
third-party applications without having to write any code
Ensure security when
managing the device isn’t
ideal (for example, BYOD)
and when building B2B apps
Accelerate app adoption: no
coding or security expertise
required. Eliminate security
bottlenecks for operational
app deployments at scale
Protect corporate data and
meet compliance and audit
requirements in highly
regulated industries with
additional encryption and
security requirements
Increase flexibility Meet strict regulations Speed mobile initiatives
© 2013 SAP AG. All rights reserved. 20 Public
EULA, App
Expiration
Per-App VPN Jailbreak/
Rooting
Detection
Geo-fencing
Data At Rest
Encryption Secure
Data Transfer
SAP Mobile App Protection Create a self-defending app
Disable app when the device is
compromised by jail breaking or
rooting
Restrict app usage
to a geographic location
FIPS 140-2 certified encryption for all
data storage. Prevent malware and
rogue apps from accessing sensitive
data
Restricts copy and paste to
unsecured area of device
Secure VPN tunnel to
enterprise network prevents
rogue apps and malware
from gaining unwanted
access
User
Authentication
Enterprise
App
Passcode policy enforcement
expiration, lock-out and help-
desk assisted passcode reset
End user license agreement
enforcement, lock-out with app expiration
Federation of apps
Secure transfer among
federated wrapped apps on
the device
© 2013 SAP AG. All rights reserved. 21 Public
SAP Mobile App Protection Zero-to-secure in seconds
3. Distribute Wrapped App
Mobile device mgmt
Mobile app mgmt
Enterprise app store
Intranet
Managed or
Unmanaged User Devices
Mocana MAP
Web Console and Server
2. “Point and Click” Policies
□ Passphrase
Secure copy-paste
Per-app VPN
□ SSL reverse proxy
DAR encryption
FIPS 140-2
□ Lockout recovery
Data wipe
□ Jailbreak detection
□ Location masking
□ Geofencing
□ App expiration
User agreement
1. Upload Enterprise App
IT Admin/LoB
© 2013 SAP AG. All rights reserved. 23 Public
SAP Mobile Secure Architecture
SAP
Afaria Mobile Device
Management
SAP Mobile Secure
On-Premise Hybrid Cloud
SAP Mobile App
Protection Mobile Device
Management
SAP Mobile
Documents Mobile Device
Management
Enterprise Integration Management
iPhone / iPad Android Windows Desktop*
Windows Phone
© 2013 SAP AG. All rights reserved. 24 Public
Key points to take home
1 The mobile landscape changes frequently
3 Mobility management begins with solid planning
4 Understand the various approaches to manage mobility and choose wisely
5 Leverage SAP research and experience in mobile strategy
6 Consider the SAP Mobile Secure portfolio as your EMM solution
2 Mobile devices are not created equally
Thank you
Laurent Rieu
Director – Business Development EMEA – SAP Mobile Solutions
Appendix
© 2013 SAP AG. All rights reserved. 28 Public
Feature / Function MDM
MDM
+ Secure Email
container
MDM
+ Secure Email
container
+ App Wrapping
MDM
+ Secure Email
container
+ App Wrapping
+ Mobile Content
Device Security
Device Encryption
Passcode Control
Certificate Management
User Authentication
Jailbreak & Root Detection
Email Provisioning
Email Encryption
Device & Mobile App Provisioning &
Revocation
Network Access Control
Containerized email
App-level security policies
Application Encryption
Content Managment
Content Asset Tracking & Version
Control
Content Revocation
Content Encryption
SAP Mobile Secure employs a
multi-layer approach to overcome
the current mobile security
limitations
Starting with Afaria, additional
security layers such as NitroDesk
or SAP Mobile Documents can be
added over time
SAP Afaria can be utilized to both
provision and remediate
additional layers
SAP Mobile Secure allows
organizations to only deploy
additional security layers on all
devices OR on select devices to
reduce licensing costs
SAP Mobile Secure at a glance
© 2013 SAP AG. All rights reserved. 29 Public
3
SAP Mobile App Protection Detailed deployment model
Active
Directory
Employee
Android Tablet Contractor
Apple iPhone
Executive
Android Phone
Distribute via MDM
Contractor
Employee
Wrapping Service and Policy
Console IT Admin
Enterprise
App
Executive
Wrapped Apps
1 2
5
4
Distribute via Enterprise
App Store
© 2013 SAP AG. All rights reserved. 30 Public
Why SAP partnered with Mocana
Mocana’s platform is the most widely-deployed embedded security tech in the world
Invented “app-wrapping”; dozens of patents granted and pending.
• Mocana technology ships in 5 of the top 7 Android OEMs (over 70% of all Android handsets).
• Ericsson uses Mocana’s certificate management software for their 4G base station infrastructure,
worldwide.
• Good relied on Mocana’s core cryptography engine for secure email offerings.
• Samsung uses Mocana’s VPN technology at the core of their KNOX secure enterprise handset
platform.