SmartPhoneToday

Home | News | Reviews | Features | FREE Downloads | Forums | Compare PDA Prices | Compare SmartPhone Prices


  BlackBerryToday > Features > Pulling Handhelds Back from the Edge

Pulling Handhelds Back from the Edge

By David Haskin
September 16, 2004

In the old days, the term "edge of the network" typically referred to a firewall located on an enterprise's premises. Today, handheld devices and laptops are the new network edge and these items walk out the door and are easily (and often) lost or stolen.

This creates a new set of security problems for enterprises, problems that Mike McClaskey, CIO of Perot Systems, painfully understands. That's because his company's business depends on mobile access. It has 14,000 users carrying laptops and other mobile devices like Blackberries. And on each of those devices is sensitive e-mail and other data.

"We have a fair number of devices that go missing in a year," acknowledged McClaskey.

Data Sensitive
The problem isn't so much the expense of replacing the devices but, rather, the sensitive nature of information stored on them, noted Bob Elfanbaum, author of Incorporating Handhelds Into the Enterprise and CEO of Asynchrony Solutions, which sells mobile device management and security software.

Elfanbaum said this is not just a problem for IT managers who implement security policies.

"I talk with a lot of CIOs and they're the ones who are saying that (mobile devices are) strategically important, that they use them to put data in the hands of people in the field who touch customers," he said. "If you put devices out there, there's risk. CIOs are seeing the benefits of mobile devices, but they also have to clearly recognize the security risks."

Problems and Solutions
 There are many anecdotes about the potentially disastrous lack of security applied to mobile devices. One of the most widely-repeated stories is how a high-level executive of a large financial services firm sold his Black Berry over eBay and discovered, long after the sale, that the device contained all manner of sensitive data.

However, hard data quantifying the risk also is starting to emerge. A recent Forrester study found that less than 10% of all large enterprises centrally manage and secure mobile devices. Similarly, a survey by a European security firm found that two-thirds of all users don't encrypt confidential data kept on mobile devices and that a third don't use password protection.

Yet, the survey found that 13% of the respondents have lost a mobile device.

Fortunately, a number of solutions are readily available, according to Elfanbaum, McClaskey and Steven Branigan, a consultant for technology vendor Stroz Friedberg.

"This problem is just beginning to reach a level of consciousness in the enterprise," Branigan said. "One of the most attractive solutions is centralized management."

Software is available from a variety of vendors such as Computer Associates and JP Mobile that help IT personnel centrally manage devices and the security policies used to lock down the devices.

"The biggest problem is developing policies that people will follow," Branigan said. "To do that, people have to understand how they use their PDAs and what they are storing on them. There are a lot of best practices that have evolved over the years for security that can be applied."

For instance, Elfanbaum cited password selection policies that have long been used in companies. In addition to centralized management, McClaskey and Branigan said they use security that is built into the devices.

McClaskey said Perot Systems only supports laptops, BlackBerry devices from Research In Motion and palmOne Treo smart phones. By limiting the devices available to end users, Perot simplifies management, McClaskey said. Plus, both supported PDAs have powerful built-in security capabilities. For instance, the devices can be set to require users to log-in if there is inactivity for more than a certain amount of time.

"That creates a usability issue, but it's worth it," McClaskey said.

In addition, if repeated log-ins fail, indicating a stranger is trying to gain access, all the data is automatically wiped off the device. If necessary, that data can be restored remotely via wireless connections, a capability supported by the supported devices.

Also, once the devices are confirmed to be missing, data can be deleted remotely, even if the device is turned off, McClaskey said. Other options include encrypting data on laptops and smaller mobile devices, a capability that is typically built into the devices themselves.

With so many key personnel using mobile devices to increase profits and productivity today the network edge is no longer the security barrier it once was but this is okay so long as technology executives lead the effort to make sure the devices and the data remain secure.

This article originally appeared on CIO Update.com

 
 Printable Version
 Email this Story to a Friend  Add Your Opinion



User Opinions:

   

Be the first to add your opinion about this product
Click HERE Now!


 Add Your Opinion  



PDA/Smartphone Newsletters
text html text html
X WindowsMobileToday X PDAStreet
X Palm Boulevard X SmartPhoneToday
X BlackBerryToday X Pocket PC Wire
X iPhoneGuide      

Other Personal Technology Newsletters
X Sharky Extreme X WiFi Planet




JupiterOnlineMedia

internet.comearthweb.comDevx.commediabistro.comGraphics.com

Search:

Jupitermedia Corporation has two divisions: Jupiterimages and JupiterOnlineMedia

Jupitermedia Corporate Info


Legal Notices, Licensing, Reprints, & Permissions, Privacy Policy.

Advertise | Newsletters | Tech Jobs | Shopping | E-mail Offers
Solutions
Whitepapers and eBooks
IBM Whitepaper: Innovative Collaboration to Advance Your Business
Internet.com eBook: Real Life Rails
Avaya Article: Call Control XML - Powerful, Standards-Based Call Control
Internet.com eBook: The Pros and Cons of Outsourcing
Go Parallel Article: Scalable Parallelism with Intel(R) Threading Building Blocks
Internet.com eBook: Best Practices for Developing a Web Site
IBM CXO Whitepaper: The 2008 Global CEO Study "The Enterprise of the Future"
Avaya Article: Call Control XML in Action - A CCXML Auto Attendant
Go Parallel Article: James Reinders on the Intel Parallel Studio Beta Program
IBM CXO Whitepaper: Unlocking the DNA of the Adaptable Workforce--The Global Human Capital Study 2008
Adobe Acrobat Connect Pro: Web Conferencing and eLearning Whitepapers
Go Parallel Article: Getting Started with TBB on Windows
HP eBook: Storage Networking , Part 1
MORE WHITEPAPERS, EBOOKS, AND ARTICLES
Webcasts
Go Parallel Video: Intel(R) Threading Building Blocks: A New Method for Threading in C++
HP Video: Is Your Data Center Ready for a Real World Disaster?
Microsoft Partner Portal Video: Microsoft Gold Certified Partners Build Successful Practices
HP On Demand Webcast: Virtualization in Action
Go Parallel Video: Performance and Threading Tools for Game Developers
 Rackspace Hosting Center: Customer Videos
Intel vPro Developer Virtual Bootcamp
HP Disaster-Proof Solutions eSeminar
HP On Demand Webcast: Discover the Benefits of Virtualization
MORE WEBCASTS, PODCASTS, AND VIDEOS
Downloads and eKits
Microsoft Download: Silverlight 2 Software Development Kit Beta 2
30-Day Trial: SPAMfighter Exchange Module
Red Gate Download: SQL Toolbelt
Iron Speed Designer Application Generator
Microsoft Download: Silverlight 2 Beta 2 Runtime
MORE DOWNLOADS, EKITS, AND FREE TRIALS
Tutorials and Demos
IBM IT Innovation Article: Green Servers Provide a Competitive Advantage
Microsoft Article: Expression Web 2 for PHP Developers--Simplify Your PHP Applications
 Featured Algorithm: Intel Threading Building Blocks - parallel_reduce
MORE TUTORIALS, DEMOS AND STEP-BY-STEP GUIDES