White Paper: Overcoming Mobile Enterprise Security Challenges

With mobile users on the go, it is necessary to remotely manage mobile devices as they connect to various public networks (Wi-Fi ‘hot-spots', cellular networks like GPRS, IDEN, EVDO, etc.) to access email, business information and data. Legacy solutions, designed for managing devices within the four walls, are not equipped to manage these remote devices while protecting the corporate network in an efficient, cost-effective and secure way.

The security goals are:

• Minimizing modification of corporate firewall configuration and integrating with existing security technologies.
• Preventing devices from having unlimited access to the corporate network.
• Ensuring secure, encrypted communication without incurring the overhead of resource-intensive VPN clients.

SOTI MobiControl meets these goals by integrating with existing firewall and security technologies seamlessly, including the Internet Security and Acceleration (ISA) server. The firewall configuration is minimal, requiring only one administrator-selectable TCP port to be forwarded to the server. The server can reside in the demilitarized zone (DMZ) thus limiting access to the corporate network from mobile devices.

To further safeguard the network, the communication between mobile devices and the SOTI MobiControl server utilizes SSL certificates for encrypted and secure end-to-end communication. SOTI MobiControl utilizes the TLS v1.0 Cipher Suites of the Secure Channel (SChannel) Microsoft Security Support Provider (SSP) and SSL Certificates installed on the mobile devices are used for physical device identification and encryption.