SECURE Mobile Access to SharePoint<br />Mobile Devices (iPads! iPhones! Android!)Access SharePoint<br />
SecureMobile Access To SharePoint<br />1<br />3<br />2<br />What Is The Issue Here?<br />Technology Overview<br />What Did...
Post PC Issue/ Opportunity<br />Your Users / Customers Want Mobile Access – Non-PC Devices Will Take Over Someday…<br />1<...
Mobile AccessSharePoint, eMail – Work Resources!!<br />Powerful Smartphones and Tablets Are More Mobile Than Many PCs<br /...
Mobile DevicesShiny New Devices – Few Blackberries…<br />Powerful Inexpensive Devices<br />Old Deployment Models Gone<br />
Mobile DevicesHUGE Technical Differences Matter!<br />Closed Basis For Mobile Devices (Apple, Carriers) Very Different Fro...
2<br />NGC Our Challenges,         Our Solution (So Far)<br />Establish Policy and Technical Controls – Facilitate Adoptio...
Critical Security Policies<br />Enrolled Connections Required <br />SSL VPN / ActiveSync Protection<br />Theft / Tamper Pr...
“Nice To Have” Device Policies<br />Simple, Self-Service Deployment<br />	Secure But Simple For People<br />“Managed” App ...
Very Important PIN Policy!<br />Can Become Issue – BALANCE Needed<br />	Secure But Simple For People<br />Just Long Enough...
How Can We Enforce This?<br />Mobile Email Access (Addiction?)<br />People NEED Their Email<br />Security/Controls Needed ...
3<br />Demo: Technology Overview<br />NGC Solutions: Device MDM/Policy via MobileIron, SSL VPN via Juniper SA / Junos Puls...
Agent Interaction<br />Updates, Profiles, Certificates<br />Report Dropped Calls<br />Check Data Speeds <br />iOS Only Fea...
iOS “App Store”<br />Links to Apple Store Point to Apps You Select <br />Define/Deliver Internal Apps Without App Store (F...
Privacy Issues<br />Mobile Intelligence / Activity Monitoring Features<br />Track Cell Tower Connections / Location of Dev...
Mobile Expense -   International Roaming Alerts<br />Detect International Roaming<br />Send Text Message Alert <br />Send ...
Access To SharePoint – Juniper/Junos VPN<br />SSL VPN for PCs<br />Users Already Know It<br />Flexible Authentication<br /...
Access To SharePoint – AircreekFilamente<br />Detect International Roaming<br />Send Text Message Alert <br />
Filamente Document Library / Previews<br />
Filamente Document Actions / Access<br />
Filamente Document Actions / Upload Content<br />
References<br />Surveys - Sybase SurveyTelenav Survey<br />MobileIron<br />Picking PIN Policy - Perimeter Jaquith Blog  - ...
POWERPOINT 2010<br />What’s Your Message?<br />
Upcoming SlideShare
Loading in …5
×

Mobile Devices Securely Accessing SharePoint

3,125 views

Published on

Mobile Devices can access SharePoint Securely. Presentation details MobileIron, Juniper Secure Access and iPad Apps for making the most of SharePoint on your Mobile Device

Published in: Technology
0 Comments
3 Likes
Statistics
Notes
  • Be the first to comment

No Downloads
Views
Total views
3,125
On SlideShare
0
From Embeds
0
Number of Embeds
20
Actions
Shares
0
Downloads
0
Comments
0
Likes
3
Embeds 0
No embeds

No notes for slide

Mobile Devices Securely Accessing SharePoint

  1. 1. SECURE Mobile Access to SharePoint<br />Mobile Devices (iPads! iPhones! Android!)Access SharePoint<br />
  2. 2. SecureMobile Access To SharePoint<br />1<br />3<br />2<br />What Is The Issue Here?<br />Technology Overview<br />What Did NGC Do?<br />Integrating Policy, Supporting Technology And SharePoint <br />
  3. 3. Post PC Issue/ Opportunity<br />Your Users / Customers Want Mobile Access – Non-PC Devices Will Take Over Someday…<br />1<br />
  4. 4. Mobile AccessSharePoint, eMail – Work Resources!!<br />Powerful Smartphones and Tablets Are More Mobile Than Many PCs<br />People Want Mobile Access Now – MORE In Future!! <br />
  5. 5. Mobile DevicesShiny New Devices – Few Blackberries…<br />Powerful Inexpensive Devices<br />Old Deployment Models Gone<br />
  6. 6. Mobile DevicesHUGE Technical Differences Matter!<br />Closed Basis For Mobile Devices (Apple, Carriers) Very Different From PC<br />Your Employees, Partners, Customers (and Providers) OWN Devices – Not IT!<br />Want Mobile Access (From Home, Coffee Shop, AND On Your Wireless LAN)<br />New Types of Risks and Threats – HUGE Issues With Lost / Stolen Devices<br />App Store Models – “There’s An App For That!!”<br />
  7. 7. 2<br />NGC Our Challenges, Our Solution (So Far)<br />Establish Policy and Technical Controls – Facilitate Adoption (with Proper Security) <br />
  8. 8. Critical Security Policies<br />Enrolled Connections Required <br />SSL VPN / ActiveSync Protection<br />Theft / Tamper Protection<br />PIN/Passcodes Required<br />Inactivity Timeout<br />Wipe Data after guesses<br />Device / Business Data Encryption<br />Protect Data On Device<br />Protect Device Backup (iTunes)<br />Remote Wipe For Lost/Stolen Devices<br />“Find My Phone” Ideal…<br />
  9. 9. “Nice To Have” Device Policies<br />Simple, Self-Service Deployment<br /> Secure But Simple For People<br />“Managed” App Store<br />Links / App Delivery<br />App Blacklist / Whitelist<br />“Manage Device Features” Centrally<br />Camera Allowed / Disallowed?<br />Wireless LAN – Other Configs.<br />One Policy – Across Many Devices<br />iOS, Android, Windows, Etc…<br />
  10. 10. Very Important PIN Policy!<br />Can Become Issue – BALANCE Needed<br /> Secure But Simple For People<br />Just Long Enough To Work<br />Six to Eight Characters<br />Auto Lock After No Active Use<br />30 minutes max – Devices Vary<br />Ten Tries – Then Wipe Biz Data <br />Warnings Stop “Butt Dial” <br />No PIN Expiration Controls <br />Not Network (AD) Passwords<br />Those Credentials Embedded?<br />
  11. 11. How Can We Enforce This?<br />Mobile Email Access (Addiction?)<br />People NEED Their Email<br />Security/Controls Needed On Devices<br />Protect Data / Control Access<br />Deploy “Email Locks” Tied To MDM<br />MobileIron Sentry for NGC<br />Update Company Policy / Forms<br />Employee Acceptance Needed<br />Agree To Device Management<br />Agree To Possible “Wipe”<br />Enrollment/Controls In Place<br />
  12. 12. 3<br />Demo: Technology Overview<br />NGC Solutions: Device MDM/Policy via MobileIron, SSL VPN via Juniper SA / Junos Pulse <br />
  13. 13.
  14. 14.
  15. 15.
  16. 16. Agent Interaction<br />Updates, Profiles, Certificates<br />Report Dropped Calls<br />Check Data Speeds <br />iOS Only Features<br />Links to iTunes App Store<br />App Delivery Direct to iOS<br />
  17. 17. iOS “App Store”<br />Links to Apple Store Point to Apps You Select <br />Define/Deliver Internal Apps Without App Store (From Your System)<br />
  18. 18. Privacy Issues<br />Mobile Intelligence / Activity Monitoring Features<br />Track Cell Tower Connections / Location of Device<br />Collect Call Logs and All SMS Messages<br />Set To Ignore Calls/SMS and Track “Current Location” Only<br />Concerns About Collecting Data and Controls / Management<br />Not Presently Any Security / Business Requirements<br />
  19. 19. Mobile Expense - International Roaming Alerts<br />Detect International Roaming<br />Send Text Message Alert <br />Send Alert to IT Admins<br />Update Plans / Activity<br />
  20. 20. Access To SharePoint – Juniper/Junos VPN<br />SSL VPN for PCs<br />Users Already Know It<br />Flexible Authentication<br />RSA SecurdID / AD / etc.<br />Very Good Controls –<br />From Full VPN Tunnel to Simple One Site Link<br />
  21. 21. Access To SharePoint – AircreekFilamente<br />Detect International Roaming<br />Send Text Message Alert <br />
  22. 22. Filamente Document Library / Previews<br />
  23. 23. Filamente Document Actions / Access<br />
  24. 24. Filamente Document Actions / Upload Content<br />
  25. 25. References<br />Surveys - Sybase SurveyTelenav Survey<br />MobileIron<br />Picking PIN Policy - Perimeter Jaquith Blog - NIST 800-63<br />iPhone Password Brute Force<br />CNN Money http://money.cnn.com/galleries/2011/technology/1108/gallery.cybersecurity_tidbits/<br />Dino Dai Zovi -http://trailofbits.com/2011/08/10/ios-4-security-evaluation/<br />
  26. 26. POWERPOINT 2010<br />What’s Your Message?<br />

×