streamline your mobile app development with the workspace ... · with our backend crm system so the...

#vmworld

DEE1807BU

Streamline Your Mobile App Development with the Workspace ONE SDK

Shardul Navare, VMware, Inc.

#DEE1807BU

VMworld 2019 Content: Not for publication or distribution

©2019 VMware, Inc.

Disclaimer

This presentation may contain product features or functionality that are currently under development.

This overview of new technology represents no commitment from VMware to deliver these features in any generally available product.

Features are subject to change, and must not be included in contracts, purchase orders, or sales agreements of any kind.

Technical feasibility and market demand will affect final delivery.

Pricing and packaging for any new features/functionality/technology discussed or presented, have not been determined.

2

The information in this presentation is for informational purposes only and may not be incorporated into any contract. There is no commitment or obligation to deliver any items presented herein. VMworld 2019 Content: Not for publication or distribution

©2019 VMware, Inc. 3

What’s in this session for you?Enterprise Apps need to offer the most delightful user experience and follow security best practices

We can help you by doing all the heavy lifting so that you can focus on the app core logic

In this session, we show you how the developers and the IT admins can collaborate to create the most streamlined and secure enterprise apps


©2019 VMware, Inc. 4©2019 VMware, Inc.

Silos between IT admin and developer

Rise of Citizen Developer

Myth - Developers only need to think about business requirements.

4

Reality -Developers have to work with legal, security, and several other teams


©2019 VMware, Inc.

Agenda

5

Requirements Evolution

Workspace ONE Platform for App Development

Phase 1 – Build

Phase 2 – Deploy

Phase 3 – Support

Workspace ONE SDK Integration Demo

Supplemental Tools


6©2019 VMware, Inc.

Requirements Evolution



Story Time!Imagine you’re a developer…

“We need an app for iOS and Android which can integrate with our backend CRM system so the global sales team out in the field can get easy access to information and add notes about the customer or prospect.”

How do I connect to the CRM system?

What will the UI look like?

Which platform should I use to write the code?VMworld 2019 Content: Not for publication or distribution


“The app should encrypt any sensitive data.”

“User must be authenticated before being allowed access to the app…”

- Security Team



“The user needs to understandand consent to the data beingcollected by the app.”

“The user should have a way toaccess the company’s privacypolicy from the app…”

- Legal Team



“If the app requires a login, we should support single sign on.”

“We should have a way to monitor app usage so we can make improvements…”

- Line of Business Team



“How do I make all this happen?”



BuildSecure | Integrate | Scale

DeployPublish | Manage | Consume

SupportFeedback | Analytics | Automation

AuthenticationCross-platform publishing of apps and packages

User feedback

Access & Single Sign OnDeployment telemetry Crash analysis

Network SecuritySmart-group based policy management

Privacy

Advanced Data Security Unified application catalog Intelligence & automation

Content Performance KPIs

Mobile flows: system workflow integration

Externalizable API System

Workspace ONE Platform



Platform

Workspace ONE SDK Modules

PrivacyUser Consent

Optional Analytics

Data Disclosure

User Education

SecurityAuthentication

Data Loss Prevention

Tunneling

Compliance

Multi-User

IntelligenceApp Adoption

Crash Analytics

User Flows

Network Performance

Modularized SDK

A collection of development libraries

Pre-developed functionality

Save development time

Modularized SDK covers an area of functionality independently

Embed only what you need



Now let’s go back to our scenario from earlier…

An app to show info from CRM system

Security, legal, and UX requirements

Tight deadline, as usual

Connect from outside the intranet

Secure authentication

Seamless onboarding

What features of Workspace ONE SDK

can help with this?



Access intranet resources from outside of corporate network.

Split tunnel traffic via admin configurable URL domain rules.

No installation of separate VPN or Tunnel client required.

Does not require installation of MDM profile or device management privileges.

Tunneling | Connect to Corporate Infrastructure

iOS | Android Xamarin | Cordova | FioriVMworld 2019 Content: Not for publication or distribution


OnboardingTrusted access to the user’s identity

Add authentication logic to ensure user’s identity

Connect to existing identity systems e.g. active directory and identity providers.

Login modalities:

1. Username & Password

2. One Time Token

3. SAML



Integrated Auth | Seamless Access to Backend Services

Remove redundant user inputs by using existing credentials or certificates for authentication

Supported Modes: NTLM | Certificate | Basic | SCEP

Certificates can be shared across multiple SDK apps

Workflows to handle AD password changes and certificate renewals



Meeting with the Security Team…

Sensitive data and credentials must be

encrypted and

secured

App must periodically authenticate user before allowing access to the app



App PasscodeFeature Overview

Supported Modes: Passcode | Username + Password

Pre-built UI with dynamic branding [Company Logo, Primary Color]

Integrated biometric authentication and forgot passcode workflows

Shared passcode and authentication session across multiple apps

User created passcode or login info is used as

entropy for encryption



Encryption

FIPS 140-2 validated data-at-rest

encryption

• User-input derived keys based on the app passcode policy

• Used by Workspace ONE applications for at-rest encryption of app data

Automatic encrypt credentials and sensitive material maintained by the SDK

Public APIs available to encrypt app specific data

iOS | Android

SDK Stored Data

• Passwords

• Certificates

• Tokens

• Decryption Keys

App Data

• User Information

• Photos

• Sensitive info

Automatic

SDK Encryption

APIs

Encrypted SDK Data Encrypted App Data

SDK Encryption



Managed Clipboard

Compose Mail in Boxer

Open Link in Web

Prevent Screenshot

Restrict 3rd Party Keyboards

Restrict Printing

Bluetooth

Camera

Data Backup

Location Services

Data Loss Prevention

Automatic Capabilities Dynamic Configurations



Legal Requirements

User education and consent to the data being collected by the app.

Access the company’s privacy policy from the app.



Workspace ONE Privacy ModuleData collection disclosure and opt-in analytics

Fully configurable in-app privacy dialog

App specific data collection

Device permissions requirements

Optional link to full web-based privacy policy

Optional analytics opt-in

Modular – consume with or without the full SDK



“How can we configure this app to have the most streamlined user experience and a solid security posture?”

- Developer and IT Admin



SDK ProfilesPayloads

Control security, behaviors, and the data retrieval of specific applications

Apply to Enterprise SDK Apps and Workspace ONE Apps

Default and Custom SDK profiles



Deployment Best practices

Upload Enterprise App as a Managed App

Edit > Assign > SDK > Assign Default or Custom SDK Profile

Publish



Your app is out in the wild…How do people like it?



What is the Problem?

Failed Purchase Could Not Login App Crashed App Hang



Monitor key performance metrics - app load time, error rates and network latency

Prioritize issues by impact to users,

conversions and revenue

Fix issues through detailed stack traces, diagnostic data, and automatic event tracking

©2019 VMware, Inc.

How can Workspace ONE Intelligence help?

29



Architecture and SDK IntegrationApp Analytics using Workspace ONE Intelligence SDK

Intelligence

– App Loads

– User Flows with support for Breadcrumbs and Crash

Apteligent

– Full feature support

Apteligent Console is hosted on AWS US only

Workspace ONEIntelligence SDK

Workspace ONEIntelligence Console

Search DatabaseStorage

StreamingData API

Apteligent



Monthly Active Users (MAU), Daily Active Users

(DAU), App Loads

Impact of network services, third-party services, and SDKs

on your app and user experience

Monitor user behavior and performance of critical business transactions

Deep Insights through App Analytics

Workspace ONE Intelligence (Apteligent) Features

Real-time crash details with root cause analysis

Product Managers

Developers

IT Administrators

Helpdesk



Engagement OverviewApp Loads, Daily and Month Active Users

App Loads represents the usage of the App

When app is launched and the SDK is initialized, an App Load event is sent and this counter is incremented

Daily Active Users (DAU) and Monthly Active Users (MAU)VMworld 2019 Content: Not for publication or distribution


Stacktrace

Produced automatically by the app when an exception is thrown

Indicates the location and progression of the program up to the point of the exception



Breadcrumbs

Get additional information about the steps users have taken

Key events that happen in the apps

No additional code changes required



User Flows OverviewMonitor user behavior and performance of critical business transactions

Track key interactions e.g. login, account registration, and in app purchase

App Loads is automatically tracked as the default user flow

Developers can specify additional User Flows by adding a few more lines of code to the application

• beginUserflow

• cancelUserflow

• failUserflow

• endUserflow



User Flows Example

Tracking Successful User Login

App Code beginUserflow(“Login”)App Code

endUserflow(“Login”)

App Code – AutomaticallyApp Load User Flow

[email protected]



User Flows Example

Tracking Unsuccessful User Login

App Code beginUserflow(“Login”)

App Code failUserflow(“Login”)App Code – Automatically

App Load User Flow

[email protected]

● ● ● ● ● ● ● ● ● ●



Workspace ONE SDK Integration Demo



App Lifecycle with Workspace ONE SDK

Step 2

Step 3

GatherRequirements

Security, Privacy and Intelligence modules

Managed App with SDK profile

Step 4

Feedback, Intelligence, Automation

Step 5

Key performance Indicators

Functional, security, legal and UX requirements

Build with WS1

SDK

Step 1

Deploy with WS1 UEM

Support after deployment

Analyze and enhance



Supplemental Tools



Jenkins Plugin

Post-build action for Jenkins jobs to automate Internal application lifecycle

Integrate with source code management and build configurations

Open source

Customize or build your own plug-in using REST APIs



Ready to Learn More?

SESSIONS HANDS ON LABS

ASK THE EXPERTS

• DEE3022BU - What’s New With Workspace ONE Boxer, Web,

Notebook, Content

• DEE2301BU - What’s New: Revolutionize Employee Productivity

with Mobile Flows and Intelligent Hub

• UEM3009BU – What’s New with Workspace ONE?

• HOL-2051-09-UEM : Module 5

Introduction to Workspace ONE Intelligent Hub and Hub Services

• HOL-2051-09-UEM : Module 6

Introduction to Productivity Apps

• MTE6155U – Workspace ONE secure apps: Boxer, Content,

Notebook & more

EUC TECHNICAL CONTENT

TECHZONE.VMWARE.COMVMworld 2019 Content: Not for publication or distribution


Unleash Your IT SuperpowersGo from zero to hero with the latest technical resources

on the VMware Digital Workspace Tech Zone

TECHZONE.VMWARE.COM



Join us for the Digital Workspace Showcase Keynote

Monday August 26th 3:30PM

Becoming a Champion of Digital Employee Experience [DW3459KU]

Apple TVs, Surface Gos and Galaxy Tablet S5e-Androids and passes to VMworld 2020 will be awarded!Don’t miss your chance to win!

Shankar IyerSVP and GM, EUC , VMware

Shawn BassVP, CTO, EUC, VMware


https://www.google.com/url?sa=i&rct=j&q=&esrc=s&source=images&cd=&ved=2ahUKEwiFhLSHx_PjAhVvU98KHT2jDPUQjRx6BAgBEAQ&url=https://www.igel.de/speakers-disrupt-na/&psig=AOvVaw13RjldbdLYiapsWoFckQph&ust=1565363347433537

https://www.google.com/url?sa=i&rct=j&q=&esrc=s&source=images&cd=&ved=2ahUKEwjFsI2Ux_PjAhUIUt8KHedWAjwQjRx6BAgBEAQ&url=https://www.vmware.com/radius/making-employee-empowerment-a-priority/&psig=AOvVaw3rhHYtJHGqtOCTm55hU0eu&ust=1565363380546385


https://bit.ly/2yzY8G2

Test the Next Gen of Workspace ONE Products!

Be the Beta Champion


streamline your mobile app development with the workspace ... · with our backend crm system so the...

Documents