presentatie mc afee emm 2011
DESCRIPTION
TRANSCRIPT
McAfee Enterprise Mobility ManagementSecuring Mobile Applications
2
The User is Evolving
June 1, 2011
2
3
The User is Evolving
June 1, 2011
3
4
IT’s Challenge with Mobile DevicesWeb 2.0, Apps 2.0, Mobility 2.0
IT
HR
Finance
Sales
IT
Threats Are 60,000 New Pieces ofMalware/day
More than half of all users don’t lock their devices
80% of IT Users Concerned about Device Data Loss
Mobile Devices Predicted to be New Malware Frontier
June 1, 2011
5
Customer FacingApps
Enterprise and LOB Apps
Basic Services
Web andSocial Media
Required:
• Data Protection
• Compliance
• Authentication
• Security Policy Management
• Self-Service Provisioning
• Enterprise App Management
June 1, 2011
Requirements for Secure Application Enablement
6
Windows
Mobile
• Makes it secure
– Configures, enforces and manages native device security settings
– Enforces device compliance with enterprise policies
– Extends the security infrastructure to include devices via ePO integration today and ultimately via integration with anti-malware, web protection, DLP, and Global Threat Intelligence
– Integrates with the data center: VPN, Wi-Fi, PKI, directories, and LOB applications
• Makes it easy
– Integrates with McAfee ePO for simple administration, reporting
– Enables user self-service provisioning
– Personalizes devices to optimize end-user productivity
• Makes it scalable
– Scales to 10s of 1,000s of devices
– Supports HA and DR configurations
Database
Files
Directory
Applications
Certificate Services
Messaging
Enterprise Environment
Symbian
Android
webOS
BlackBerry
iPhone
iPad
McAfee
EMM
6 June 1, 2011
Empowering Enterprise Mobility
VPN
7
The Right Life Cycle for Mobile Device Management
ePO
Provisioning Self-service provisioning sets security policies, configures network connectivity, and automatically personalizes devices for users.
Policy
Management
Compliance
IT Operations
Support
Application
ManagementProvisioning
Security &
AuthenticationePO
Security and AuthenticationEach device is issued a unique digital certificate to strongly authenticate it against Microsoft CA for security and user experience.
Policy ManagementPush security policies, configuration updates, and remote helpdesk tasks (such as lock, wipe, and selective wipe) over-the-air.
ComplianceAutomatically check devices prior to network access to ensure only authorized, secured devices access the network
IT Operations SupportManage policies and devices centrally and get centralized reporting through McAfee ePOintegration.
Enterprise Application Management Make applications available in a secure, role-based way. Offer software for download, links to third-party app stores, and web links.
June 1, 20117
8
Self-Service Provisioning for iPhone
Easy, Secure, Automated
Go to the
App Store
1 2
Enter Your Email
Credentials
IT Services are
Auto-Provisioned
4
Agree to
Corporate Policy
3
Easy, Secure, Automated
8 June 1, 2011
9
Self-Service Provisioning for Android
9 June 1, 2011
1
Go to the
Marketplace
2
Enter Your Email
Credentials
3
Agree to
Corporate Policy
4
IT Services are
Auto-Provisioned
Easy, Secure, Automated
10 June 1, 201110
Benefits:
• Industry-standard security
• Strong authentication for secure
access to communications
services such as Wi-Fi and VPN
• Strong authentication for secure
push email and other applications
• Single sign on for enhanced user
experience
• No impact on battery life
Industry-Standard Security: Microsoft Certificate Authority
Industry Standard PKI for Strong Authentication
11
Enterprise Application Store
• Recommend and make applications securely available based on group, role, or device type.
– Custom corporate
applications
– Third-party
applications (Apple
App Store or Android
Marketplace)
– Webclips
• Device applicationinventory, audit, andpolicy management
12
Centralized Visibility and Control with ePO
Compliance reports are
based on systems we
know about
13
What we don’t
manage is where
compliance status is
unknown
Centralized Visibility and Control with ePO
14
Bringing all
endpoints into
compliance status
view is critical to
assessing risk and
prioritizing actions
Centralized Visibility and Control with ePO
15
All Part of McAfee Security Connected
Mac, UNIX/Linux AV
Virtual Desktop
Virtual Server
Mobile Devices
Anti-Virus & Anti-Spyware
Host Intrusion Prevention
Endpoint Encryption
Application Whitelisting
Desktop Firewall
Device Control
Policy Auditing
NAC Endpoint
Endpoint Security
Email Server AV & Anti-Spam
SharePoint Protection
Website Reputation
Next Generation Firewall
Network Intrusion Prevention
NAC Gateway
Network User Behavior Analysis
Network Threat Behavior Analysis
Network Threat Response
Network Security
Policy Management
Security Reporting
Mobile Management
Vulnerability Management
Risk Management
Compliance
Security Management
Content Security
Email Gateway
Web Gateway
Data Loss Prevention
Encryption
June 1, 2011