One of the challenges of allowing mobile workers to utilize their personal mobile devices is that while many apps can be run, the platform can make them insecure. MobileSpaces has just released the newest version of its container-based workspace that allows users to run apps such as Google Apps in a safe and secure environment, which can be managed centrally via browser.
A primary function of many mobile device management (MDM) solutions is designating what apps are safe to be run. Many MDM solutions, according to MobileSpaces CEO David Goldschlag don't actually allow users to run the full Google Apps suite. They substitute their own versions of email or calendar, for instance, which may be secure, but dot not offer the same functionally as the actual Google apps.
In an email exchange I had with MobileSpaces CTO Yoav Weiss after speaking with Goldschlag, he explained that while the MobileSpaces container is not quite the same as a "Docker" kind of container in Linux, it is somewhat similar. It is a virtual environment but not a hypervisor or separate OS. But Android and iOS present some unique challeges which Weiss and his team have overcome with their workspace.
Actually the MobileSpaces workspace is not just for Google Apps. It is an application-agnostic workspace where just about any app can be run in a secure, managed environment. Goldschlag said there really isn't a limit to what you can run in a workspace, it really is just up to what tool an administrator needs to give workers.
While BYOD is widely used, for the most part organizations have not caught up with how to both empower employees to use these mobile devices and maintain control and security over the apps they are running for work-related activity. Solutions like MobileSpaces bridge that gap and should facilitate even more BYOD adoption while allowing corporate administrators to rest easy.
Another topic I spoke to MobileSpaces about was the difference between securing apps in Android versus iOS. While most of the attention about mobile security is centered on the Android platform, Apple's mobile platform is not impenetrable. In fact Goldschlag thinks most all mobile platforms can be compromised. However, that being said, there are definitely challenges in making the MobileSpaces solution work in both Apple and Android.
The MobileSpaces workspace solution could spell the end of MDM vendors offering their own versions of email and calendar programs, which in my own experience are frankly lacking compared to commercial apps. Back in the day I remember using GoodMail, for instance, for mobile apps. I never thought it gave me the same experience I was getting with generally available applications. Being able to use the "real" applications should make for happier users.
Of course, some users may still rebel against the idea of big brother still managing the apps they use for work on their own devices. But I think that is a fair trade off for getting corporate approval to use your device and for the security it provides.
As co-founder and Managing Partner at The CISO Group, Alan Shimel is responsible for driving the vision and mission of the company. The CISO Group offers security consulting and PCI compliance management for the payment card industry. Prior to The CISO Group, Alan was the Chief Strategy Officer at StillSecure. Shimel was the public persona of StillSecure as it grew from start up to helping defend some of the largest and most sensitive networks in the world.
Shimel is an often-cited personality in the technology community and is a sought-after speaker at industry and government conferences and events. His commentary about the state of security, open source and life is followed closely by many industry insiders via his blog and podcast, "Ashimmy, After All These Years" (www.ashimmy.com). Alan is now also a regular contributor to The CISO Group’s security.exe blog and podcast. Follow him on Google.
Alan has helped build several successful technology companies by combining a strong business background with a deep knowledge of technology. His legal background, long experience in the field, and New York street smarts combine to form a unique personality.
Disclosure: The CISO Group sells a software-as-a-service PCI compliance application called SAQPro. The company is independent and does not represent any other vendor's products as a reseller.
Policy on comments: Respectful discussion is welcomed! However comments that use inappropriate language, consist of name calling or personal attacks, or include accusations of wrongdoing are not appropriate. Those comments will be deleted or edited.