Consumerization, BYOD and MDM: What you need to know
Summary: Consumerization and BYOD is reshaping the way IT is purchased, managed, delivered and secured. We delve into what it means, the key products involved, how to handle it and where it's going in the future.
MDM or EMM?
A fully featured Mobile Device Management suite actually encompasses a lot more than just device management, although that remains the starting point for an end-to-end solution. The other layers that need addressing are the applications running on the devices, the network connection to the enterprise and the data that's accessed, shared or generated. The term that captures this expanded functionality is Enterprise Mobility Management (EMM), and many MDM vendors are busily extending their products in this direction.
Here's a quick tour of the functionality expected at each layer.
Device management
At the very minimum, an MDM suite must require users to set numeric or alphanumeric passwords for accessing their mobile devices, and renew them at some designated frequency. Encryption of corporate data must also be enforceable, along with remote locking and wiping of lost or stolen devices. Other basic device-level MDM functionality includes auditing (of device features, status and usage), location tracking, hardware management (disabling a device's camera or Bluetooth connectivity where necessary, for example) and Active Directory synchronisation (for integrating mobile device policies with existing IT management infrastructure). It goes without saying that the leading mobile platforms — iOS and Android on smartphones and tablets, Mac OS X and Windows on notebooks — must be supported.
Advanced device-level functionality includes support for additional platforms (Windows 8 and Windows Phone 8 being uppermost in many minds right now), the ability to separate personal and corporate profiles, and the ability to set context-aware policies that block access to certain capabilities (the device's camera, for example), at certain times or in certain places.
Application management
Control over the apps that employees run on their mobile devices is obviously essential: a rogue program downloaded from a mobile OS's native app store could easily compromise a corporate network, for example. So MDM suites should provide IT managers with an inventory of the apps running on users' mobile devices and ideally accommodate a customised enterprise app store where approved apps can be made available securely to particular users or groups. Another approach is to implement a blacklist of apps that are deemed insecure or damaging in some way to employee productivity. A more advanced — and increasingly important — feature is app-specific security via containerisation (also known as 'app-wrapping'), whereby important apps like corporate email get individual secure connections to the enterprise network.
Network management
A fully featured MDM/EMM suite needs to monitor device usage so that, should a potentially rogue app get downloaded (perhaps it's not yet on the blacklist, for example), it can control access to the corporate network. Obviously, unknown, unauthorised or jailbroken devices should not be allowed onto the network. Also, the suite's network security functionality should ideally integrate with any existing network security infrastructure.
Data management
Document repositories and collaboration tools such as Microsoft's SharePoint are widely used in larger businesses, but it's not a trivial matter to make them secure in a highly mobile enterprise — and BYOD only exacerbates the problem. Content management in MDM/EMM suites needs to interface and synchronise with leading products like SharePoint, while ensuring that sensitive documents do not escape from the enterprise. If the MDM/EMM suite you're considering lacks this functionality, specialist products such as Colligo Briefcase are available to fill the gap.
Kick off your day with ZDNet's daily email newsletter. It's the freshest tech news and opinion, served hot. Get it.
Talkback
This is a joke
Been BYOD since High School...
Corporate-issued devices for trucking now have touch screens and some level of portability (either through cabling OR wireless display technology) within the truck. I even see EOBRs that connect directly to driver-owned smartphones to do their paperwork FOR THEM!
You know what we use Good software for? ABSOLUTELY NOTHING, since we don't use or need Good! Qualcomm, BigRoad and XRS handle everything Good claims to handle (corporate e-mail from dispatch), they do e-mail better than Good, AND they do FMCSA compliance (driver logs, paperwork, and 2-way messaging) as well.
Also, we have unique ways to control devices and device use. The methods are called FMCSA regulations, corporate policies, safety departments, hands-free devices (including an ignition interlock) and an invention called Bluetooth. Not very unique, huh?
Beyond BYOD to BYO...apps
Consumerization has hardly dented legacy IT to date, but nothing is safe. Google Apps, Box, Dropbox, Evernote and other "consumer apps" all have enterprise versions that can be purchased and implemented at the business unit level. The success of Salesforce.com is largely a result of going straight to the user.
It wasn't IT's idea to bring the iPad to work. We forward work email to our Gmail account because it will be easier to access. We have Dropbox because 'SharePoint' offers everything but. The CMO uses Evernote because she wants to.
How do we take control of our users device is the wrong question. How do we enable our users with apps that can be easily and safely leveraged in today's reality? That's the right question.
Devices were just the tip of the spear.
We already do that
This is fine as long as the person who bought the software owns it
Citrix and Microsoft will be the leaders
Op-Ed piece based on old information
BYOD is not going away
"Consumerization of IT is clearly not going away, so enterprise IT managers cannot simply bury their heads in the sand. The challenge is to accommodate the 'work anywhere, anytime' productivity and user satisfaction benefits that consumerization and BYOD can bring, while retaining enough control to keep company data secure and compliance requirements satisfied."
is very valid. The difficulty is building business apps that run on the web AND on all the major mobile platforms in all the form factors in a cost effective and timely fashion. The problem is compounded the difficulty in recruiting people with the requisite talent.
if you think about it
You can build a web app and then native apps for all the devices, but here are the drawbacks of this approach
--- Time to build for native is much greater
--- You have to build for each platform
Or you can code your own HTML5/CSS3/JavaScript on the client side and code the server side (using tools like PHP, Ruby, Java, Visual Studio.net) and then you still have to figure out providing access to the native hardware of the mobile device. The drawbacks are:
--- The time it takes to write the server side
--- The time it takes to write the client side code in JavaScript, CSS3, HTML5 or it still requires significant time to integrate libraries from Sencha, JQuery, etc.
--- You still have to create the shell for access to native hardware functionality
There has to be a better way.
Richard Rabins
www.alphasoftware.com
richard@alphasoftware.com
MDM is such a weak strategy !
http://bpmredux.wordpress.com/2013/02/14/how-mobile-app-management-can-help-avoid-a-byod-headache/
As for the trends and vendor graphs, I thought Gartner MQs were bad, I've now discovered a new level.
Free MDM www.apptec360.com
we use in our company, the free mobile device management solution from AppTec 360. It is really a great solution and for free :)
http://www.apptec360.com/en_mobile_device_management.html
or
www.apptec360.com
BR
George
BYOD
Secre file sharing for the enterprise
Consumerization of App Development