SAP - SAP İLE MOBİL CİHAZLAR GÜVENDE - SAP Forum 2013

SAP FORUM İSTANBUL Gelecek Bugün

Laurent Rieu

SAP

SAP İLE MOBİL CİHAZLAR GÜVENDE

Taking Mobile Security To The Next Level With

SAP Mobile Secure September 20th – SAP Forum Istanbul

Laurent Rieu

Director – Business Development EMEA – SAP Mobile Solutions

© 2013 SAP AG. All rights reserved. 5 Public

Trends impacting how mobile devices are managed

Cloud-based mobility services gaining momentum

Device ownership and use models changing

Mobile first and mobile only increasingly common

Increasing quantity of information to and from mobile devices 1100101 1011010 0100101

Ever-changing privacy requirements


Single sign on Per-app VPN

Managed App Configuration

App provisioning User authentication

Devic

e

encry

ption

Ap

p

dis

trib

uti

on

Asset tracking

Passcode control

Jailbreak detection

Content Management

Vers

ion

contr

ol

Co

nte

nt

en

cry

pti

on

Certificate

management App wrapping Email provisioning

Enterprise Mobile Management: Scratching The Surface…


Mobile Security In An Ever Changing World…


SAP Mobile Secure Industry’s First Comprehensive Mobile Security and Management Suite

Mobile Security

Device

Application

Content

Services

Enterprise Mobility Management System

SAP Mobile Secure

On Premise Hybrid Cloud


SAP Mobile Secure

SAP Afaria

Secure mobile devices

SAP Mobile

Documents

Secure Mobile Content

SAP Mobile

App Protection by Mocana

Secure Mobile Apps


Securing devices: SAP Afaria

SAP Afaria is the trusted solution to manage and secure deployments of mobile devices for any size of

company – in the cloud or on-premise

Use built-in robust analytics

for instant insight into mobile

device usage and the ability to

take immediate action

Meet the requirements of the

world’s largest enterprises.

Remotely lock and wipe

managed devices, control

security settings for bring-

your-own-device (BYOD) or

corporate-owned devices

Quickly self-enroll devices for

enterprise use; have control

needed by pre-configuring

settings and enforcing security

and compliance policies

Robust analytics Mobile device management Highly secure and scalable


Hewlett Packard Chooses SAP To Manage Over 180k Devices

http://www.youtube.com/watch?v=hKWrIx_IRnk


SAP Mobile Secure

SAP Afaria


SAP Mobile

Documents


SAP Mobile


Secure Mobile Apps


Securing content: SAP Mobile Documents

HTTP XML

iWork

Share files with teams,

colleagues, and business

partners from anywhere

Discover and access content

from corporate document

management systems

Access personal business

documents instantly on your

laptop or any mobile device

Share my files My files – any device Corporate content access

SAP Mobile Documents is designed for enterprise deployments where collaboration, security, and

control of business content are critical. Users enjoy anytime, anywhere access to view and collaborate

on personal and corporate content, in an easy-to-use, native mobile app


Android: The Malware Threat


Is This REALLY Enough?


Jekyll Applications On iOS

Source: Georgia Institute of Technology


SAP Mobile Secure

SAP Afaria


SAP Mobile

Documents


SAP Mobile


Secure Mobile Apps


Securing Apps: SAP Mobile App Protection by Mocana

SAP Mobile App Protection by Mocana helps organizations accelerate mobile initiatives by automating

app security. App-wrapping technology enables enterprises to quickly secure existing corporate and

third-party applications without having to write any code

Ensure security when

managing the device isn’t

ideal (for example, BYOD)

and when building B2B apps

Accelerate app adoption: no

coding or security expertise

required. Eliminate security

bottlenecks for operational

app deployments at scale

Protect corporate data and

meet compliance and audit

requirements in highly

regulated industries with

additional encryption and

security requirements

Increase flexibility Meet strict regulations Speed mobile initiatives


EULA, App

Expiration

Per-App VPN Jailbreak/

Rooting

Detection

Geo-fencing

Data At Rest

Encryption Secure

Data Transfer

SAP Mobile App Protection Create a self-defending app

Disable app when the device is

compromised by jail breaking or

rooting

Restrict app usage

to a geographic location

FIPS 140-2 certified encryption for all

data storage. Prevent malware and

rogue apps from accessing sensitive

data

Restricts copy and paste to

unsecured area of device

Secure VPN tunnel to

enterprise network prevents

rogue apps and malware

from gaining unwanted

access

User

Authentication

Enterprise

App

Passcode policy enforcement

expiration, lock-out and help-

desk assisted passcode reset

End user license agreement

enforcement, lock-out with app expiration

Federation of apps

Secure transfer among

federated wrapped apps on

the device


SAP Mobile App Protection Zero-to-secure in seconds

3. Distribute Wrapped App

Mobile device mgmt

Mobile app mgmt

Enterprise app store

E-mail

Intranet

Managed or

Unmanaged User Devices

Mocana MAP

Web Console and Server

2. “Point and Click” Policies

□ Passphrase

Secure copy-paste

Per-app VPN

□ SSL reverse proxy

DAR encryption

FIPS 140-2

□ Lockout recovery

Data wipe

□ Jailbreak detection

□ Location masking

□ Geofencing

□ App expiration

User agreement

1. Upload Enterprise App

IT Admin/LoB


SAP Mobile Secure Architecture

SAP

Afaria Mobile Device

Management

SAP Mobile Secure

On-Premise Hybrid Cloud

SAP Mobile App

Protection Mobile Device

Management

SAP Mobile

Documents Mobile Device

Management

Enterprise Integration Management

iPhone / iPad Android Windows Desktop*

Windows Phone


Key points to take home

1 The mobile landscape changes frequently

3 Mobility management begins with solid planning

4 Understand the various approaches to manage mobility and choose wisely

5 Leverage SAP research and experience in mobile strategy

6 Consider the SAP Mobile Secure portfolio as your EMM solution

2 Mobile devices are not created equally

Thank you

Laurent Rieu

Director – Business Development EMEA – SAP Mobile Solutions

[email protected]

mailto:[email protected]

Appendix


Feature / Function MDM

MDM

+ Secure Email

container

MDM

+ Secure Email

container

+ App Wrapping

MDM

+ Secure Email

container

+ App Wrapping

+ Mobile Content

Device Security

Device Encryption

Passcode Control

Certificate Management

User Authentication

Jailbreak & Root Detection

Email Provisioning

Email Encryption

Device & Mobile App Provisioning &

Revocation

Network Access Control

Containerized email

App-level security policies

Application Encryption

Content Managment

Content Asset Tracking & Version

Control

Content Revocation

Content Encryption

SAP Mobile Secure employs a

multi-layer approach to overcome

the current mobile security

limitations

Starting with Afaria, additional

security layers such as NitroDesk

or SAP Mobile Documents can be

added over time

SAP Afaria can be utilized to both

provision and remediate

additional layers

SAP Mobile Secure allows

organizations to only deploy

additional security layers on all

devices OR on select devices to

reduce licensing costs

SAP Mobile Secure at a glance


3

SAP Mobile App Protection Detailed deployment model

Active

Directory

Employee

Android Tablet Contractor

Apple iPhone

Executive

Android Phone

Distribute via MDM

Contractor

Employee

Wrapping Service and Policy

Console IT Admin

Enterprise

App

Executive

Wrapped Apps

1 2

5

4

Distribute via Enterprise

App Store


Why SAP partnered with Mocana

Mocana’s platform is the most widely-deployed embedded security tech in the world

Invented “app-wrapping”; dozens of patents granted and pending.

• Mocana technology ships in 5 of the top 7 Android OEMs (over 70% of all Android handsets).

• Ericsson uses Mocana’s certificate management software for their 4G base station infrastructure,

worldwide.

• Good relied on Mocana’s core cryptography engine for secure email offerings.

• Samsung uses Mocana’s VPN technology at the core of their KNOX secure enterprise handset

platform.

SAP - SAP İLE MOBİL CİHAZLAR GÜVENDE - SAP Forum 2013

Technology

Transcript of SAP - SAP İLE MOBİL CİHAZLAR GÜVENDE - SAP Forum 2013