indus khaitan snr. director, oracle rajesh pakkath snr. product manager, oracle rakesh meena snr....

Indus KhaitanSnr. Director, Oracle

Rajesh PakkathSnr. Product Manager, Oracle

Rakesh MeenaSnr. Architect, Aurionpro

October 26, 2015

Copyright © 2015, Oracle and/or its affiliates. All rights reserved. |

Mobile Security in the Cloud

Copyright © 2015, Oracle and/or its affiliates. All rights reserved. | 3

Safe Harbor StatementThe following is intended to outline our general product direction. It is intended for information purposes only, and may not be incorporated into any contract. It is not a commitment to deliver any material, code, or functionality, and should not be relied upon in making purchasing decisions. The development, release, and timing of any features or functionality described for Oracle’s products remains at the sole discretion of Oracle.


Program Agenda

1

2

3

4

Enterprise Mobile Trends

Oracle Mobile Security Cloud Service

Mobile Security Use Cases

Q&A


55Copyright © 2015 Oracle and/or its affiliates. All rights reserved.

Mobile OS adding more in-built MDM/MAM features

MDM commoditized and approaching zero dollar value

MAMmore in-built tools and features for enterprise mobile security

LEVERAGE COMMON IDENTITY, AUTHENTICATION AND MANAGEMENT SERVICES ACROSS DEVICES AND PLATFORMS


The Enterprise App Explosion

Source: Portable and Web Apps Dominate in Our Mobile Model, Ensuring Maximum Device Flexibility

Gartner Presentation, The Current and Future State of Mobility, Van L Baker, Jason Wong, August 2015

NEED A CROSS PLATFORM RAPID APP DEVELOPMENT PLATFORM INTEGRATED WITH KEY MOBILE SECURITY FUNCTIONS

Copyright © 2015, Oracle and/or its affiliates. All rights reserved. | Oracle Confidential – Internal/Restricted/Highly Restricted 7

Cloud Adoption on the Rise

NEED IDENTITY FEDERATION, HYBRID ACCESS TO CLOUD/ON-PREM AND COMMON POLICIES ACROSS CHANNELS


We are Living in a Breach Culture

NEED RISK/CONTEXT AWARE STRONG AUTHENTICATION ACROSS CHANNELS


Vision of the Future – Forrester Research

MOBILE DEVICE CAN BE THE ULTIMATE TOKENLESS AUTHENTICATOR


Program Agenda

1

2

3

4


Oracle Mobile Cloud Platform


Q&A

Copyright © 2015, Oracle and/or its affiliates. All rights reserved. | Oracle Confidential – Highly Restricted 11

Build & Deliver Mobile Apps with Seamless, Secure Access to Mission-Critical DataOracle Mobile Platform: Simplifies Enterprise Mobility

MANAGE

Custom Mobile Apps Packaged Mobile Apps Partner Built Mobile Apps

Mobile Cloud ServiceDEVELOP INTEGRATE

Mobile Cloud Service

ANALYSEMobile Cloud Service Mobile Security Cloud Service

SECURE


Social Login

Single Sign-On

Reporting &Analytics

Oracle & 3rd PartyConnectors

ID Admin &Self Service

StrongAuthentication

Oracle Identity Cloud Services

Employees

Partners

Customers

Enables Secure Access by Anyone, from Anywhere, on Any Device

Mobile Identity

Single sign on across mobile appsRisk / context aware step up authentication Self service and delegated administrationCertificate LCM

Mobile Application Management

App centric security policiesInbuilt PIM appsZero code wrapping technologyApp store for distributionSecure apps built on MAF and MCS

Mobile Device ManagementDevice centric security policiesDevice enrollmentDevice controlDevice inventory

Mobile Content Management

Secure container & app tunnel for securely accessing and storing corporate contentStrong DLP policies to avoid data leakageFile manager and doc editor / viewer for secure content collaboration

Multi-channel Application Security

Mobile SecurityCloud Service


Risk/context-aware Enterprise Mobility ManagementOracle Mobile Security Cloud Service

IDENTITY CLOUD SERVICEMOBILE SECURITYMulti-channel

On-prem Apps

Custom Apps

Oracle, 3rd party, custom MCS SaaS

OTP KBABiometrics

Out of bandRisk/context aware


Risk, context aware access Mobile as another factor of authentication

Biometrics based authentication for Secure Workspace

Knowledge based authentication using Identity Cloud Service

Time-based One-time Password using Oracle Mobile Authenticator

MOBILE DEVICES ARE THE NEW IDENTITY


Pre-wrapped Oracle Apps

• Hundreds of Oracle on-prem and SaaS apps pre-wrapped with Mobile Security Services

• Security functions include:– Hybrid SSO across on-prem and SaaS apps– Data Encryption– Device Integrity– Data Leakage Prevention – App distribution– Workspace and device control

Easy uptake of Mobile Security Services

BICSEBS

JDE

Primavera

WCC

Seibel

DOCSTAP


Program Agenda

1

2

3

4


Oracle Mobile Cloud Platform


Q&A

Confidential. Copyright © 2015 Aurionpro Solutions. All rights reserved. 17

Aurionpro at a glance

Oracle Platinum Partner

Revenue 2013-14 : 120 Million USDNA HQ: San Ramon, California

100+ Customers33 Fortune 500 Customers

1,340+ Employees 18 Products serving 5 Industries

Solutions delivered in 22 Countries


Retail Pharmacy – Business Requirements

• 300k customers, 6k employees, 50+ retail stores• Store Employees

– Business need: Easily interact with customers on the store floor instead of being behind POS systems (Apple store like experience)

– The stores already has issued tablets to access some of this info from the device web browser but lacks a seamless user experience – shared devices which requires each user to login to device level VPN to access the data

– Provide a native mobile app that employees can login using their existing network credentials to securely view customers purchase history, suggest and process targeted offers from these shared and controlled tablets

• Store Customers– Business need: Manage refills from mobile app with a view of historical transactions on their own

device– Customer registrations keep increasing by the day and management is getting very complex

Secure in-store shopping experience


Cloud based Mobility Management with minimum disruption to business

Store Employees (B2E) Store Customers (B2C)• No re-registration of tablets – use existing MDM

solution to lockdown and manage the device

• Allow active users to authenticate to the shared devices using existing network (AD) credentials

• Restrict access to the app after store hours

• No device level VPN or additional logins should be required

• Enable Kiosk mode - Replace device passcode with corporate credentials and restrict device usage to the Store mobile app only

• Encrypt any customer data accessed and downloaded on the device

• Move to a scalable cloud IDM solution to handle customer registrations, user management and access functions

• Customer transactions and refills should continue to be serviced by the on-prem Customer Information System

• Mobile app distributed via public app stores

• Encrypt any customer data accessed and downloaded on the device

Retail Pharmacy - Technical Requirements


Identity Cloud Service

Mobile Security

MSCS Access Server

Oracle Access ManagerPharmacy

Information System

3rd party MDM

Server

Active Directory

Oracle Cloud

Customer on-prem env

Oracle Identity Cloud Service

Authenticate & Access with SSO (App Tunnel)

ID Bridge

Manage Device(Co-exist)

Get Mobile Security Policies

Logout

Store App(Kiosk Mode)

Store Employee Access


MSCS Access Server

Customer Information

System

Oracle CloudCustomer on-prem env

Oracle Identity Cloud Service

Authenticate & Get Mobile Security Policies

Customer App

Store Customer Access

Public App Store(Wrapped Customer

app)

Active Directory (Customer OU)

Oracle Access Manager

Identity Cloud ServiceIdentity Management

AuthenticationMobile Security

Authenticate & AccessAccess


Financial Institution – Business RequirementsLoan Sourcing - Anytime, Anywhere

• 5000+ on-the-field sales agents working from remote parts of the country• Business need: Replace the current paper based micro-finance application

process with native mobile apps that could enable sales agents work from any part of the country at any time. This would result in more business to the company and help agents reach their sales targets more effectively.

• No app development expertise available in-house• Agents want a quick and seamless user experience logging into and using

multiple mobile apps• Need app usage analytics for licensing and ROI calculation


Cloud based Mobility Development & Management solution

• Develop a native mobile app that connects to loan servicing application REST interfaces and includes a workflow of customer identity vetting provided by 3rd party SaaS provider

• Allow active users to user their own devices (BYOD) and authenticate to the app using existing network (AD) credentials

• Offline app access and sync to the backend Loan Servicing application is critical as remote locations may not have network connection

• Agent access from certain locations should require knowledge based strong authentication

• Agents need to connect to Oracle Document Cloud Service (DOCS) for any loan related files to be uploaded or viewed

• Agents need access to their corporate emails hosted on Office 365

• Application/LOB owners should be able to view app usage analytics

Financial Institution - Technical Requirements


Identity Cloud Service Mobile Security

Risk based Authn

Mobile Cloud ServiceDevelop, Workflow, Analytics

Document Cloud ServiceFile Collaboration

MSCS Access Server

Loan Servicing System

Oracle Cloud Customer on-prem env

Oracle Identity Cloud Service + Mobile Cloud Service

Customer App

Scalable Mobile Backend and Security solution

Public App Store(O365, Pre-wrapped

Oracle DOCS)

Active Directory

(IdP)

(Hybrid inter-app SSO, Offline access)

Identity Vetting SaaS

Office 365

3rd PartyCloud SaaS

SAML Auth

SAML/OAuth

SAML/OAuth

OAuth

OAuth


1. Identity management + Enterprise Mobility Management in one package

2. Support for risk/context-aware step up authentication and authorization

3. Hybrid SSO across on-prem, Oracle SaaS/PaaS, Oracle MCS and 3rd party SaaS providers

4. Pre-wrapped Oracle Apps on public app stores for easier mobility management uptake

Oracle Identity Cloud Service Summary


Oracle Cloud PlatformDATA

MANAGEMENT

IT OPERATIONSMANAGEMENT

IDENTITY MANAGEMENT

CONTENT &PROCESS

APPLICATION DEVELOPMENT

INTEGRATION

MOBILE

BUSINESS ANALYTICS


Classroom Training

Learning Subscription

Live Virtual Class

Training On Demand

Keep Learning with Oracle University

education.oracle.com

Cloud

Technology

Applications

Industries


Session Surveys

Help us help you!!• The [Program Committee J1] [organizing committee OW] would like to

invite you to take a moment to give us your session feedback. Your feedback will help us to improve your conference.

• Please be sure to add your feedback for your attended sessions by using the Mobile Survey or in Schedule Builder.

28

indus khaitan snr. director, oracle rajesh pakkath snr. product manager, oracle rakesh meena snr....

Documents