Article Options
HP Networking
Discover how the new HP Networking combines the technologies and alliances of 3Com, ProCurve and TippingPoint into the next networking leader.

BYOD: What will work and what won’t in your enterprise

HPNetworking| February 24, 2012
3 Comments
0

By Vishwas Manral, Distinguished Technologist, HP Networking, Advanced Technology Group  @vmanral

 

vm.jpgI knew BYOD had arrived (in Silicon Valley at least) when I noticed that the front page headline of the mainstream newspaper, “Mercury News,” screamed: The BYOD debate.

 

 I had glossed over the consumerization of IT and what it means for networking in my earlier blog posts. HP CTOs discussed this trend in a recent article on 4 IT trends that will help you remain competitive in 2012.

Here, I will focus on the solutions and technologies for supporting BYOD.

 

BYOD defined


vm_1a.PNG

Bring Your Own Device, or BYOD, refers to the enterprise workforce using their personal smart phones and tablets to access secure and sensitive enterprise content. IT departments have used Mobile Device Management (MDM) software for managing IT approved mobile devices – mainly for protection, management and configuring policies (basically to take total control of the devices). Having fallen behind the consumer devices in the innovation curve, enterprise-approved devices are now a hindrance rather than an enabler for productivity of the workforce. In fact, with crafty professionals circumventing corporate IT policies, BYOD is now an imperative for IT. This, of course, means big security challenges for IT.

 

And those security issues are...

 

vm_2.jpgAs the number of mobile devices proliferates and software updates for the devices become frequent – the current IT models are tested. To provide security for BYOD, data needs to be protected in transit, from malware/spyware as it resides on the device and also in case the mobile device is lost/misplaced. There is no dearth of innovative technologies and solutions from large/small companies trying to help IT tackle the issues. I will evaluate mechanisms that are provided by various vendors, categorizing them into those that will work and those that will not.

 

BYOD solutions that will not work

 

A simple solution could be to support a set of devices, OS versions and applications, and then have a “default deny” policy for all others. This solution, however, goes against the very fundamentals of the consumerization of IT, where the users do not want IT policies as a hindrance in choosing the devices. It is for this very same reason that enterprise-only app stores and using blacklist/ whitelist—where IT determines which applications can be downloaded into the device—will not work. Besides having the number of applications proliferating, IT will find a hard time monitoring and approving (blacklisting or whitelisting) every application.

 

BYOD solutions that may work

 

Virtualization of a mobile device is a solution for allowing separate partitions for personal and work on the same physical device. Logically, this sounds like an elegant solution for BYOD challenges confronting IT. However, one of the biggest challenges would be to have all the mobile device vendors allow such a support on their devices. (Apple does publish their MDM APIs, though only for privileged access). Besides, it would be interesting to see how easy it would be to navigate between different environments, which resources such a solution would take on the mobile device and how it would affect user experience.

 

A managed solution where the service provider performs the mobile device management could also work for enterprise IT. However, such a model may work for some companies and may not for others. An open and extended OMA Device Management solution support would go a long way in helping this model.

 

BYOD solutions that will work

 

vm_3.jpgEnhanced capabilities, such as the following, are the essential minimal set that needs to be supported by all solutions:

 

  • Remote lock and wipes
  • Over-the-air-firmware downloads
  • Policy management
  • Remote fine-grained proactive monitoring and auditing
  • Encryption/IDS/IPS
  • Tracking
  • Ability to handle liability issues

 

These solutions would also require dissolvable agents to assess posture of the device.

 

Virtual Desktop Integration (VDI) solutions that separate out the front-end display and the back-end running on servers are probably more easily deployable than a pure virtualization approach. This also makes business sense with the inherent cost advantages, flexibility (running on current devices) and controlled security. Amazon Silk browser uses such a model already.

 

Because BYOD is such an upcoming trend, a SaaS-based model would make perfect sense too. The inherent advantages of scale-out, usage-based subscriptions, higher availability and not as much legacy software to support make it an ideal candidate.

 

Do you BYOD?

 

First, full disclosure: I still use different devices—a personal phone and another IT approved device for work purposes.

 

What are your views on BYOD? Is your company ready for BYOD? Let me know your thoughts! Share your comments here. Or on Twitter: @vmanral

 

>> IT Megatrends in 2012

>>4 IT trends that will help you remain competitive in 2012

>> Learn more about HP Networking products and solutions

>> Follow HP Networking on Twitter and Google+ | Join HPN LinkedIn Community | Like us HPN Facebook

Labels: bring your own device| BYOD| hp networking| IT Trends 2012| networking| Technology trends
Labels:
Comments
Dominic Jones - SME IT consultant at BArton Technology(anon) | ‎03-23-2012 09:52 AM
Options

BYOD (Bring Your Own Device) isn’t the most eloquent acronym to come out of the IT world. However, some say it stands for a new era where employees’ preferred devices are also used for completing work tasks. But is BYOD really the ultimate social integration and cost saving trend for businesses?

It’s obvious that there are significant cost savings associated with employees using their own smartphones, tablets and laptops for work. However, the downsides are numerous and worth considering. From a logistics point of view, a multitude of devices is hard to support and manage, as you often can’t make the same app work on all platforms.

The question of data integrity and security should also be raised. How can businesses manage their information and ensure that there are no leaks after the employee decides to up sticks and work for the competition, taking his device with him? The answer is simple; they can’t.

Even more importantly, BYOD can’t be implemented realistically across the business because not all of your staff own state of the art portable devices, fit for enterprise use. BYOD could create differences between employees and ostracise those who can’t afford the latest tablet or smartphone. This will undoubtedly affect productivity and data security, which makes the Bring Your Own Device trend as unpalatable as its acronym.

0
Vishwas Manral(anon) | ‎03-27-2012 03:42 AM
Options

Hi Dominic,

 

You raise some great points there. 

 

I see atleast in the near run BYOD, will not save money because the cost of managing the device will be more than the cost of the device itself.

 

If an employee intends to take the device with him mechanisms, like remote wipes/ VDI would work well, because with a VDI kind of solution the data is not on the device but remotely stored. Do let me know if I make sense to you?

 

Thanks,

Vishwas

0
vishwasmanral | ‎03-27-2012 03:55 AM
Options

Hi Dominic,

 

I mostly agree with you.

 

I agree when moving to BYOD, the cost saving for the device will be more than offset when we look at the cost spending required to manage the BYOD in the enterprise.

 

As for securing data when an employee leaves, I think solutions like remote wipe/ VDI may help in this case. Am I totally off track? 

 

Thanks,

Vishwas

0
Leave a Comment

We encourage you to share your comments on this post. Comments are moderated and will be reviewed
and posted as promptly as possible during regular business hours

To ensure your comment is published, be sure to follow the community guidelines.
Be sure to enter a unique name. You can't reuse a name that's already in use.
Be sure to enter a unique email address. You can't reuse an email address that's already in use.
Type the characters you see in the picture above.Type the words you hear.
 
Search
turn on suggestions Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
About the Author
Follow Us