{"id":14095,"date":"2013-05-02T12:11:02","date_gmt":"2013-05-02T19:11:02","guid":{"rendered":"http:\/\/www.intego.com\/mac-security-blog\/?p=14095"},"modified":"2013-05-02T12:11:02","modified_gmt":"2013-05-02T19:11:02","slug":"will-dods-idevice-security-approval-ease-byod-fears","status":"publish","type":"post","link":"https:\/\/www.intego.com\/mac-security-blog\/will-dods-idevice-security-approval-ease-byod-fears\/","title":{"rendered":"Will DoD’s iDevice Security Approval Ease BYOD Fears?"},"content":{"rendered":"

\"holding-phone\"<\/a><\/p>\n

Security on mobile devices is both simpler and trickier than security on desktops. For starters, there\u2019s a much greater possibility of either loss or theft of the device, the trick is whether you can still manage to secure the data on it despite that fact.<\/p>\n

It seems the US Department of Defense is getting ready to give approval<\/a> for some use of iPad and iPhones by its employees (as well as some other devices), which would seem to imply that they feel reasonably confident that some smartphones have reached that point. Most companies won\u2019t have quite as much of a pressing need to secure data as the DoD, as it\u2019s generally the company\u2019s reputation rather than lives they\u2019re protecting. Nevertheless, their actions can still serve as a good bellwether for the state of security. If something is good enough for a government agency charged with defense, it should be good enough for company that \u201conly\u201d protects customer information.<\/p>\n

The developers of iOS have done a really remarkable job of locking down the OS. It wouldn\u2019t be such an event for a new Jailbreak tool to be released, if that was not the case. They\u2019ve put a lot of \u201cblast shields\u201d in place that limit the damage any one exploit can do, which means that rooting the device requires chaining a series of vulnerabilities together. And these vulnerabilities seem to be a little more difficult to find with each new version. Not impossible, still, but the bar is set quite high for both the skill level and time required.<\/p>\n

This strikes me as a good sign for mobile device developers taking security more seriously. For most companies, if you can hammer out the specifics in a policy that makes sense both for the company and employees<\/a>, letting them use their own devices can genuinely be a reasonable option in some cases.<\/p>\n

holding iPhone photo credit: Steve Rhodes<\/a> via photopin<\/a> cc<\/a><\/span><\/em><\/p>\n","protected":false},"excerpt":{"rendered":"

Security on mobile devices is both simpler and trickier than security on desktops. For starters, there\u2019s a much greater possibility of either loss or theft of the device, the trick is whether you can still manage to secure the data on it despite that fact. It seems the US Department of Defense is getting ready […]<\/p>\n","protected":false},"author":6,"featured_media":14099,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"spay_email":"","jetpack_publicize_message":"","jetpack_is_tweetstorm":false},"categories":[7],"tags":[363,387,319],"yoast_head":"\n\n\n\n\n\n\n\n\n\n\n\n\t\n\t\n\n\n\t\n\t\n\t\n