Managing mobile devices within your enterprise is an important element to ensure security.  The use of company-issued and employee-owned smartphones is increasing within enterprises and like all mobile devices security measures must be in place in order to reduce smartphone security risks.  A recent article by Mary Brandel from Computerworld cited 10 common smartphone security risks and what your enterprise can do to make these devices more secure.

1. Configuration management plan
2. Power-on password, strong password policy
3. Inactivity timeout/auto-lock
4. Auto-destruct and data-wiping plans
5. Memory encryption rules
6. Master plan for backup and synchronization
7. Email forwarding regulations
8. Application restrictions
9. Default browser rules
10. Policy for dealing with smartphone diversity

Let’s Get Mobile!  Contact DecisionPoint Systems, Inc. for more information about mobile device security.

Motorola AirDefense Personal is an AirDefense add-on that integrates with AirDefense Enterprise and provides uninterrupted protection for mobile workers and their wireless assets when outside the protection of AirDefense sensors.  AirDefense Personal monitors for malicious wireless activities and enforces wireless policy and threats including risky configuration, insecure communication, suspicious WLAN settings and risky WLAN connectivity.  

AirDefense Personal enforces corporate polices for all types of wireless networks, including Wi-Fi, EVDO, 3G, GPRS and many more. Motorola AirDefense Personal protects the mobile workforce from the wireless-specific risks that could expose private data and confidential transactions. Mobile workers are protected from risks that directly target vulnerable wireless users.  AirDefense Personal notifies the user when risky activity occurs or mitigate the risk entirely by proactively disabling the wireless connection.

Contact DecisionPoint Systems, Inc. to learn more about AirDefense Personal and how it can improve your network security for your mobile workers.

Motorola AirDefense Enterprise is the most powerful Wireless Intrusion Prevention System (IPS) available.  AirDefense Enterprise solution provides complete protection against wireless threats, policy compliance monitoring, robust performance monitoring and troubleshooting and location tracking in a solution that scales to support single offices as well as organizations with hundreds of locations around the globe.. The solution provides comprehensive protection and operational support for all 802.11n networks as well.

AirDefense Enterprise accurately detects and protects the network against all wireless threats and unauthorized devices by stopping the targeted rogue device before it can damage the network. AirDefense complements wireless VPNs, encryption and authentication. The system automatically responds to threats according to appropriate business process and compliance requirements on both wireless and wired networks.

Location tracking technology enable administrators to accurately locate devices in minimal time.

Add-On Modules include:

• Advanced Troubleshooting - identifies wireless network configuration issues
• WEP Cloaking - wireless infrastructure protection secured by legacy encryption protocols
• Advanced Forensics - wireless activity and trend analysis
• Spectrum Analysis - identify/classify non-802.11 interference
• Centralized Management Console (CMC) - manager appliance settings 
• LiveRF - wireless network performance
  

Contact DecisionPoint Systems, Inc. to learn more about AirDefense Enterprise and how it can improve your network security.

Our July 14 post introduced the topic of Push-To-Talk (PTT) explaining what Push-To-Talk is and its benefits to your business.

Many people are fans of Nextel’s Direct Connect Push-To-Talk feature.  The problem is you’re locked into Sprint-Nextel.  Even if you’re happy with them as your carrier, you’re still limited in your phone selection.  So what can you do if you really want the Push-To-Talk capability but you want to switch carriers or your mobile workers  need a ruggedized phone—perhaps with an integrated bar code scanner?

Until recently, there really were no alternatives.  Now there is.  Below is an audio demo:

Push-to-Talk Audio Demo

We introduced the topic of Data Safeguard Solutions in our July 28 post.   In that post, we said we would explore the three-pronged security solutions in more depth.   Today, we wrap up this discussion by addressing the topic of Mobile VPN products.

A virtual private network (VPN) is a technology that establishes a private or secure network connection known as a VPN tunnel within a public network, such as the Internet.  The third-generation VPN, called the mobile VPN, is based on the TLS (Transport Layer Security, is the latest version of SSL) protocol, which has been optimized specifically for low bandwidth networks and mobile devices. 

Common features include:

• Mobile VPN based on the TLS (Transport Layer Security, is the latest version of SSL) protocol.   
• AES (Advanced Encryption Standard) data encryption.
• FIPS 140-2 certified.  FIPS (Federal Information Processing Standard) Publication 140-2, is a U.S. government computer security standard. 
• Authentication options: Smartcard, client certificate (X.509) and RADIUS.
• Compliance with wireless requirements for PCI, SOX, HIPAA, etc.

 In addition to the increased security offered by a mobile VPN product, the following are also benefits: 

• Single user log-in.
• Seamless network roaming including WLAN to WWAN.
• Session resumption allows for a very fast VPN reconnection without any user interaction.  
• Automatic resumption after hibernation.   This feature extends battery life.
•  Data transaction recovery. 

 Contact DecisionPoint Systems, Inc. to assist your company in determining the ideal mobile VPN product for you. 

We introduced the topic of Data Safeguard Solutions in our July 28 post.  In that post, we said we would explore the three-pronged security solutions in more depth.   Mobile device Security was addressed in our July 29 post.  Today we will address mobile security suites.

Security Suites provide protection for mobile devices from viruses, malware, data compromise, the effects of device theft, and unauthorized data access.    Some products support the full range of mobile operating systems including Windows Mobile, Symbian, iPhone, Palm, RIM, and Linux.

Common features include: 

• Virus Protection - protects mobile devices against malware delivered via e-mail, SMS, MMS, direct download, Bluetooth or infrared transmission. Typically this includes real-time scan of any file received as well as on-demand scans of internal memory, memory card and full device. 
• Firewall - protects users from threats. Firewall solutions typically offer bi-directional, packet filtering options, protecting the mobile device from accessing harmful or questionable content and preventing malicious content from being transferred to the device. Firewalls monitors cellular, Wi-Fi and phone-to-PC traffic blocking and rule-based filtering.

In addition to the above core functionality, mobile security suites may also include:

• Call and Message Filter - Blocks incoming SMS, MMS and/or voice calls from selected contacts and unknown users.  
• Mobile VPN

Contact DecisionPoint Systems, Inc. to assist your company in determining the ideal security suite product for you.  

We introduced the topic of Data Safeguard Solutions in our July 28 post.  In that post, we said we would explore the three-pronged security solutions in more depth.

Device Security was the first solution listed in that post.  This software category is available as either Enterprise software or a subscription-based SaaS solution with a Web-based portal.

Common features include:

• Authentication - User privileges and credentials for logging on to the device.
• Data Encryption - Data stored directly on mobile device as well as on memory cards is encrypted.
• Device Lockdown - Create a white list of approved applications or lock down device (sometimes known as kiosk mode) to prevent execution of unauthorized programs, changes to settings or install unauthorized software.
• Last Communications Monitoring - This feature triggers security actions if a device has been out of contact for a specified time interval or has been lost or stolen. Actions can include locking down or wiping.

 Contact DecisionPoint Systems, Inc. to assist your company in determining the ideal device security product for you. 

Increasingly, mobile security is in the news.  Fortunately, DecisionPoint can ease our customers’ minds in this regard.  Virtually all of our solutions feature data encryption.  In addition, we can offer a three-pronged solution to safeguard their data:

1. Device Security.  Common features include monitoring of last communication, capability to lock down device or wipe data.
2. Security Suites.  Firewall and antivirus.
3. Mobile VPN.  In addition to VPN security, functionality typically includes seamless network roaming, session resumption and data transaction recovery.

Depending on the customer’s desired level of security, the above components can be implemented individually or in any combination.  Contact DecisionPoint Systems, Inc. to assist your company in determining the ideal level of security required and the combination of products that will meet your security needs. 

In future blog posts, the above security solutions will be explored in more depth.