Mobile Devices in the Enterprise: What IT Needs to Know

Ashish JainDirector, Product Management, VMware@itickr

About VMware Company Overview

– $3.77 billion in 2011 revenues– >$4.5 billion in cash and equivalents– ~12,000 employees worldwide– 5th largest infrastructure software

company in the world Proven in the Trenches

– 300,000+ VMware customers– 100% of Fortune 100– 100% of Fortune Global 100– 99% of Fortune 1000– 97% of Fortune Global 500

Partner Network– 2,200+ Technology & Consulting Partners– 25,000 Channel Partners– 59,000 VMware Certified Professionals

The Shifting Landscape

Delivery Methods

Devices

Applications

Work Style

The Shifting Landscape

Devices Applications

Smart Phone Stats

Smart Phone Stats

Transition to the Post-PC Era Has Already Begun

Installed base of enterprise applications

Source: Gartner, 2011

2011

Demo

- Access PPT via Windows PC- Access native app/cloud storage via iPad- Access a Virtual desktop via iPad- Access via streaming over HTML 5

Today’s Work Device

Challenges

Joint ownership: Who owns the device? Liability ? Privacy: Does IT gets to monitor all activity? Lost Device: What happens if lose the device? Or I

sell? Job change: What happens when I leave the company?

Can IT wipe everything? Data Leakage: I copy data locally? USB drive?

Malicious apps? Cost: Does it cost more to support BYOD? …

IT Response

“If you access business resources from a device, you give us the right to manage, lock and even wipe that device, even if you end up losing personal data and apps as a result”

< Waiting for slide from Mark Diodati >

Solutions

Data Loss Prevention (DLP)

Mobile Device Management (MDM)

Mobile App Management (MAM)

Text analysis, Metatagging, monitoring, blocking

via Gateway server, or native mobile app or

baking content management into apps

Data Loss Prevention (DLP)

Mobile Device Management

On-device encryption, PIN enforcement, Remote

lock, Remote wipe, Support VPN, Restrict

Wireless, Disable Camera, Stop Email

forwarding, Prevent iCloud backup, Cert Auth …

Smart Phones Market Share

iOS

src - http://blog.amadeusconsulting.com/wp-content/uploads/2012/05/audiobooksiosdistribution.png

Version Release

Date%

iOS 3.x June, 2009 1%

iOS 4.x June 2010 15%

iOS 5.x June 2011 83%

Android’s Fragmentation Issue

Version Name Release Date

%

2.2 Froyo May 2010 17.3%

2.3.x Gingerbread Dec 2010 64%

3.X Honeycomb Feb 2011 2.4%

4.X Ice Cream Sandwitch

Oct 2011 10.9%

Mobile App Management (MAM)

Enterprise app store, distribution, app policies, app

blacklists, Wrapping , Secure Container, SDK, Licensing,

Billing, Internal app storage, Bulk purchase…

Security and Identity

SSO Flow (Browser only)

IdP RP

AD

1

2

3

4SAML

SSO Flow (with mobile app)

IdP RP

AD

1

3

4

5SAML

Mobile App

2OAuth

AS, RS

6

RP

SSO Flow (challenges)

IdP RP

AD

1

3

4

5SAML

Mobile App

2OAuth

AS, RS

6

Authentication per Mobile App. No Authn State on Device No invalidation of access token during AD deprovisioning No clean up of offline/cached data on device

SSO Flow (challenges)

IdP RP

AD

1

3

4

5SAML

Mobile App

2OAuth

AS, RS

6

Native IdPAS

?

Thanks