streamline your mobile app development with the workspace ... · with our backend crm system so the...
TRANSCRIPT
#vmworld
DEE1807BU
Streamline Your Mobile App Development with the Workspace ONE SDK
Shardul Navare, VMware, Inc.
#DEE1807BU
VMworld 2019 Content: Not for publication or distribution
©2019 VMware, Inc.
Disclaimer
This presentation may contain product features or functionality that are currently under development.
This overview of new technology represents no commitment from VMware to deliver these features in any generally available product.
Features are subject to change, and must not be included in contracts, purchase orders, or sales agreements of any kind.
Technical feasibility and market demand will affect final delivery.
Pricing and packaging for any new features/functionality/technology discussed or presented, have not been determined.
2
The information in this presentation is for informational purposes only and may not be incorporated into any contract. There is no commitment or obligation to deliver any items presented herein. VMworld 2019 Content: Not for publication or distribution
©2019 VMware, Inc. 3
What’s in this session for you?Enterprise Apps need to offer the most delightful user experience and follow security best practices
We can help you by doing all the heavy lifting so that you can focus on the app core logic
In this session, we show you how the developers and the IT admins can collaborate to create the most streamlined and secure enterprise apps
VMworld 2019 Content: Not for publication or distribution
©2019 VMware, Inc. 4©2019 VMware, Inc.
Silos between IT admin and developer
Rise of Citizen Developer
Myth - Developers only need to think about business requirements.
4
Reality -Developers have to work with legal, security, and several other teams
VMworld 2019 Content: Not for publication or distribution
©2019 VMware, Inc.
Agenda
5
Requirements Evolution
Workspace ONE Platform for App Development
Phase 1 – Build
Phase 2 – Deploy
Phase 3 – Support
Workspace ONE SDK Integration Demo
Supplemental Tools
VMworld 2019 Content: Not for publication or distribution
6©2019 VMware, Inc.
Requirements Evolution
VMworld 2019 Content: Not for publication or distribution
©2019 VMware, Inc. 7
Story Time!Imagine you’re a developer…
“We need an app for iOS and Android which can integrate with our backend CRM system so the global sales team out in the field can get easy access to information and add notes about the customer or prospect.”
How do I connect to the CRM system?
What will the UI look like?
Which platform should I use to write the code?VMworld 2019 Content: Not for publication or distribution
8©2019 VMware, Inc.
“The app should encrypt any sensitive data.”
“User must be authenticated before being allowed access to the app…”
- Security Team
VMworld 2019 Content: Not for publication or distribution
9©2019 VMware, Inc.
“The user needs to understandand consent to the data beingcollected by the app.”
“The user should have a way toaccess the company’s privacypolicy from the app…”
- Legal Team
VMworld 2019 Content: Not for publication or distribution
10©2019 VMware, Inc.
“If the app requires a login, we should support single sign on.”
“We should have a way to monitor app usage so we can make improvements…”
- Line of Business Team
VMworld 2019 Content: Not for publication or distribution
©2019 VMware, Inc. 11
“How do I make all this happen?”
VMworld 2019 Content: Not for publication or distribution
©2019 VMware, Inc. 12
BuildSecure | Integrate | Scale
DeployPublish | Manage | Consume
SupportFeedback | Analytics | Automation
AuthenticationCross-platform publishing of apps and packages
User feedback
Access & Single Sign OnDeployment telemetry Crash analysis
Network SecuritySmart-group based policy management
Privacy
Advanced Data Security Unified application catalog Intelligence & automation
Content Performance KPIs
Mobile flows: system workflow integration
Externalizable API System
Workspace ONE Platform
VMworld 2019 Content: Not for publication or distribution
©2019 VMware, Inc. 13
Platform
Workspace ONE SDK Modules
PrivacyUser Consent
Optional Analytics
Data Disclosure
User Education
SecurityAuthentication
Data Loss Prevention
Tunneling
Compliance
Multi-User
IntelligenceApp Adoption
Crash Analytics
User Flows
Network Performance
Modularized SDK
A collection of development libraries
Pre-developed functionality
Save development time
Modularized SDK covers an area of functionality independently
Embed only what you need
VMworld 2019 Content: Not for publication or distribution
©2019 VMware, Inc. 14
Now let’s go back to our scenario from earlier…
An app to show info from CRM system
Security, legal, and UX requirements
Tight deadline, as usual
Connect from outside the intranet
Secure authentication
Seamless onboarding
What features of Workspace ONE SDK
can help with this?
VMworld 2019 Content: Not for publication or distribution
©2019 VMware, Inc. 15
Access intranet resources from outside of corporate network.
Split tunnel traffic via admin configurable URL domain rules.
No installation of separate VPN or Tunnel client required.
Does not require installation of MDM profile or device management privileges.
Tunneling | Connect to Corporate Infrastructure
iOS | Android Xamarin | Cordova | FioriVMworld 2019 Content: Not for publication or distribution
©2019 VMware, Inc. 16
OnboardingTrusted access to the user’s identity
Add authentication logic to ensure user’s identity
Connect to existing identity systems e.g. active directory and identity providers.
Login modalities:
1. Username & Password
2. One Time Token
3. SAML
iOS | Android Xamarin | Cordova | FioriVMworld 2019 Content: Not for publication or distribution
©2019 VMware, Inc. 17
Integrated Auth | Seamless Access to Backend Services
Remove redundant user inputs by using existing credentials or certificates for authentication
Supported Modes: NTLM | Certificate | Basic | SCEP
Certificates can be shared across multiple SDK apps
Workflows to handle AD password changes and certificate renewals
iOS | Android Xamarin | Cordova | FioriVMworld 2019 Content: Not for publication or distribution
©2019 VMware, Inc. 18
Meeting with the Security Team…
Sensitive data and credentials must be
encrypted and
secured
App must periodically authenticate user before allowing access to the app
VMworld 2019 Content: Not for publication or distribution
©2019 VMware, Inc. 19
App PasscodeFeature Overview
Supported Modes: Passcode | Username + Password
Pre-built UI with dynamic branding [Company Logo, Primary Color]
Integrated biometric authentication and forgot passcode workflows
Shared passcode and authentication session across multiple apps
User created passcode or login info is used as
entropy for encryption
iOS | Android Xamarin | Cordova | FioriVMworld 2019 Content: Not for publication or distribution
©2019 VMware, Inc. 20
Encryption
FIPS 140-2 validated data-at-rest
encryption
• User-input derived keys based on the app passcode policy
• Used by Workspace ONE applications for at-rest encryption of app data
Automatic encrypt credentials and sensitive material maintained by the SDK
Public APIs available to encrypt app specific data
iOS | Android
SDK Stored Data
• Passwords
• Certificates
• Tokens
• Decryption Keys
App Data
• User Information
• Photos
• Sensitive info
Automatic
SDK Encryption
APIs
Encrypted SDK Data Encrypted App Data
SDK Encryption
VMworld 2019 Content: Not for publication or distribution
©2019 VMware, Inc. 21
Managed Clipboard
Compose Mail in Boxer
Open Link in Web
Prevent Screenshot
Restrict 3rd Party Keyboards
Restrict Printing
Bluetooth
Camera
Data Backup
Location Services
Data Loss Prevention
Automatic Capabilities Dynamic Configurations
VMworld 2019 Content: Not for publication or distribution
©2019 VMware, Inc. 22
Legal Requirements
User education and consent to the data being collected by the app.
Access the company’s privacy policy from the app.
VMworld 2019 Content: Not for publication or distribution
©2019 VMware, Inc. 23
Workspace ONE Privacy ModuleData collection disclosure and opt-in analytics
Fully configurable in-app privacy dialog
App specific data collection
Device permissions requirements
Optional link to full web-based privacy policy
Optional analytics opt-in
Modular – consume with or without the full SDK
VMworld 2019 Content: Not for publication or distribution
24©2019 VMware, Inc.
“How can we configure this app to have the most streamlined user experience and a solid security posture?”
- Developer and IT Admin
VMworld 2019 Content: Not for publication or distribution
©2019 VMware, Inc. 25
SDK ProfilesPayloads
Control security, behaviors, and the data retrieval of specific applications
Apply to Enterprise SDK Apps and Workspace ONE Apps
Default and Custom SDK profiles
VMworld 2019 Content: Not for publication or distribution
©2019 VMware, Inc. 26
Deployment Best practices
Upload Enterprise App as a Managed App
Edit > Assign > SDK > Assign Default or Custom SDK Profile
Publish
VMworld 2019 Content: Not for publication or distribution
©2019 VMware, Inc. 27
Your app is out in the wild…How do people like it?
VMworld 2019 Content: Not for publication or distribution
©2019 VMware, Inc. 28
What is the Problem?
Failed Purchase Could Not Login App Crashed App Hang
VMworld 2019 Content: Not for publication or distribution
©2019 VMware, Inc. 29
Monitor key performance metrics - app load time, error rates and network latency
Prioritize issues by impact to users,
conversions and revenue
Fix issues through detailed stack traces, diagnostic data, and automatic event tracking
©2019 VMware, Inc.
How can Workspace ONE Intelligence help?
29
VMworld 2019 Content: Not for publication or distribution
©2019 VMware, Inc. 30
Architecture and SDK IntegrationApp Analytics using Workspace ONE Intelligence SDK
Intelligence
– App Loads
– User Flows with support for Breadcrumbs and Crash
Apteligent
– Full feature support
Apteligent Console is hosted on AWS US only
Workspace ONEIntelligence SDK
Workspace ONEIntelligence Console
Search DatabaseStorage
StreamingData API
Apteligent
VMworld 2019 Content: Not for publication or distribution
©2019 VMware, Inc. 31
Monthly Active Users (MAU), Daily Active Users
(DAU), App Loads
Impact of network services, third-party services, and SDKs
on your app and user experience
Monitor user behavior and performance of critical business transactions
Deep Insights through App Analytics
Workspace ONE Intelligence (Apteligent) Features
Real-time crash details with root cause analysis
Product Managers
Developers
IT Administrators
Helpdesk
VMworld 2019 Content: Not for publication or distribution
©2019 VMware, Inc. 32
Engagement OverviewApp Loads, Daily and Month Active Users
App Loads represents the usage of the App
When app is launched and the SDK is initialized, an App Load event is sent and this counter is incremented
Daily Active Users (DAU) and Monthly Active Users (MAU)VMworld 2019 Content: Not for publication or distribution
©2019 VMware, Inc. 33
Stacktrace
Produced automatically by the app when an exception is thrown
Indicates the location and progression of the program up to the point of the exception
VMworld 2019 Content: Not for publication or distribution
©2019 VMware, Inc. 34
Breadcrumbs
Get additional information about the steps users have taken
Key events that happen in the apps
No additional code changes required
VMworld 2019 Content: Not for publication or distribution
©2019 VMware, Inc. 35
User Flows OverviewMonitor user behavior and performance of critical business transactions
Track key interactions e.g. login, account registration, and in app purchase
App Loads is automatically tracked as the default user flow
Developers can specify additional User Flows by adding a few more lines of code to the application
• beginUserflow
• cancelUserflow
• failUserflow
• endUserflow
VMworld 2019 Content: Not for publication or distribution
©2019 VMware, Inc. 36
User Flows Example
Tracking Successful User Login
App Code beginUserflow(“Login”)App Code
endUserflow(“Login”)
App Code – AutomaticallyApp Load User Flow
VMworld 2019 Content: Not for publication or distribution
©2019 VMware, Inc. 37
User Flows Example
Tracking Unsuccessful User Login
App Code beginUserflow(“Login”)
App Code failUserflow(“Login”)App Code – Automatically
App Load User Flow
● ● ● ● ● ● ● ● ● ●
VMworld 2019 Content: Not for publication or distribution
38©2019 VMware, Inc.
Workspace ONE SDK Integration Demo
VMworld 2019 Content: Not for publication or distribution
©2019 VMware, Inc.
VMworld 2019 Content: Not for publication or distribution
©2019 VMware, Inc. 40
App Lifecycle with Workspace ONE SDK
Step 2
Step 3
GatherRequirements
Security, Privacy and Intelligence modules
Managed App with SDK profile
Step 4
Feedback, Intelligence, Automation
Step 5
Key performance Indicators
Functional, security, legal and UX requirements
Build with WS1
SDK
Step 1
Deploy with WS1 UEM
Support after deployment
Analyze and enhance
VMworld 2019 Content: Not for publication or distribution
41©2019 VMware, Inc.
Supplemental Tools
VMworld 2019 Content: Not for publication or distribution
©2019 VMware, Inc.
Non-Native Dev Platforms
AirWatch Software
Development Kit
Workspace ONE SDK
VMworld 2019 Content: Not for publication or distribution
©2019 VMware, Inc. 43
Jenkins Plugin
Post-build action for Jenkins jobs to automate Internal application lifecycle
Integrate with source code management and build configurations
Open source
Customize or build your own plug-in using REST APIs
VMworld 2019 Content: Not for publication or distribution
©2019 VMware, Inc. 44
Ready to Learn More?
SESSIONS HANDS ON LABS
ASK THE EXPERTS
• DEE3022BU - What’s New With Workspace ONE Boxer, Web,
Notebook, Content
• DEE2301BU - What’s New: Revolutionize Employee Productivity
with Mobile Flows and Intelligent Hub
• UEM3009BU – What’s New with Workspace ONE?
• HOL-2051-09-UEM : Module 5
Introduction to Workspace ONE Intelligent Hub and Hub Services
• HOL-2051-09-UEM : Module 6
Introduction to Productivity Apps
• MTE6155U – Workspace ONE secure apps: Boxer, Content,
Notebook & more
EUC TECHNICAL CONTENT
TECHZONE.VMWARE.COMVMworld 2019 Content: Not for publication or distribution
©2019 VMware, Inc. 45
Unleash Your IT SuperpowersGo from zero to hero with the latest technical resources
on the VMware Digital Workspace Tech Zone
TECHZONE.VMWARE.COM
VMworld 2019 Content: Not for publication or distribution
©2019 VMware, Inc. 46
Join us for the Digital Workspace Showcase Keynote
Monday August 26th 3:30PM
Becoming a Champion of Digital Employee Experience [DW3459KU]
Apple TVs, Surface Gos and Galaxy Tablet S5e-Androids and passes to VMworld 2020 will be awarded!Don’t miss your chance to win!
Shankar IyerSVP and GM, EUC , VMware
Shawn BassVP, CTO, EUC, VMware
VMworld 2019 Content: Not for publication or distribution
©2019 VMware, Inc. 47
https://bit.ly/2yzY8G2
Test the Next Gen of Workspace ONE Products!
Be the Beta Champion
VMworld 2019 Content: Not for publication or distribution
VMworld 2019 Content: Not for publication or distribution
VMworld 2019 Content: Not for publication or distribution