Solved

Security concerns & risks assessment of Mobile Iron Email+ in Android or iDevices

Posted on 2016-07-28
1
18 Views
Last Modified: 2016-07-29
Anyone can provide risks assessments for the following & the mitigations:

Mobile Iron Email+ residing in Android or iDevices
0
Comment
Question by:sunhux
1 Comment
 
LVL 62

Accepted Solution

by:
btan earned 500 total points
ID: 41732950
Assess threat based on device and apps exposure impact the information stored, in transit and in use. You will need the vendor to confirm on the applicable capability to reduce the exposure WITH additional apps install though I stated some brief one just for a start...

Threat - Data leakage/breach, Risk - loss of information confidentiality & integrity
>MobileIron Email - Encapsulate Email apps from other personal apps, Segregate Email information from other apps access, Encryption on device and Apps VPN (using AppsTunnel) for end to end protection

Threat - Mass infection, Risk - loss of information confidentiality & integrity & Availability
>MobileIron Email - Leverage on existing device AV or protective s/w for real time malware and compromised device state (e.g. jailbroken/rooted) detection, backend content filtering based on Enterprise email exchange AV scan before sending to device, apps are pushed down from MI trusted AppStore (signed apps)

Threat - Unauthorized Access, Risk - loss of information confidentiality & integrity
 > MobileIron Email - MI agent for MDM and MAM controls for customized email apps "watch over" based on policy usage and enable audit trail for proactive monitoring on any anomalous email usage activities, strict policy include login credentials for multi-user and enforce 2FA (if available)

Threat - Loss of device or device theft, Risk - loss of information confidentiality & availability
> MobileIron Email - MI agent for MDM and MAM controls for remote wipe of apps and device for selective information stored in the device or ext storage. At all times data at rest are encrypted.
1

Featured Post

U.S. Department of Agriculture and Acronis Access

With the new era of mobile computing, smartphones and tablets, wireless communications and cloud services, the USDA sought to take advantage of a mobilized workforce and the blurring lines between personal and corporate computing resources.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Big data transfers via information superhighways require special attention and protection. Learn more about the IT-regulations of the country where your server is located. Analyze cloud providers and their encryption systems for safe data transit. S…
These days, all we hear about hacktivists took down so and so websites and retrieved thousands of user’s data. One of the techniques to get unauthorized access to database is by performing SQL injection. This article is quite lengthy which gives bas…
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, Just open a new email message.  In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…
When you create an app prototype with Adobe XD, you can insert system screens -- sharing or Control Center, for example -- with just a few clicks. This video shows you how. You can take the full course on Experts Exchange at http://bit.ly/XDcourse.

929 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

13 Experts available now in Live!

Get 1:1 Help Now