Apple's iOS 7 Gives Security Pros a Lot to Like
New mobile OS, launched with its iPhone 5S and 5C and a free update for iOS 6 users, should strengthen Apple's appeal in the enterprise.
Tue, September 10, 2013
"Before iOS 7, Apple already had a secure operating system, with many options available to enterprises to lock them down," said SilverSky CTO Andrew Jaquith.
"Only the BlackBerry had more options," Jaquith said. "With iOS 7, companies will find many of their remaining needs addressed. It's clear that Apple is listening to their enterprise customers."
Following the security lead of BlackBerry, and Samsung with its Knox platform, Apple has added features to help segregate personal from professional information on a device.
"They are doing this with a few different features, including restricting company apps from talking to personal apps, as well as offering a per-app VPN. which can selectively route only enterprise traffic," said Jonathan Dale, marketing director of Fiberlink..
"In my opinion, Apple appears to have significantly improved the controls which help separate work and personal information," Dale said. "Users and companies should feel more secure that their data will not go to unintended places."
The new iOS also has better support for Mobile Device Management (MDM) systems. The potential lag between initializing a device on the network and enrolling it in an MDM. Now the two tasks can rolled into one for more efficient and easier operation.
"There will be more mobile security policies available to lock down devices," SilverSky's Jaquith said.
"These include additional options for restricting Siri, AirDrop file sharing, and which apps can open particular files and attachments," he said. "Admins should be able to restrict documents in company email, for example, from being opened in DropBox."
Apple has also enhanced containerization in the OS. Its "Open In" management separates personal and corporate data so business content will be opened only in specific apps approved by the enterprise.
"Single Signon" is another attractive security feature of the new iOS. It allows a device to communicate with the backend of a system without each of its apps generating usernames and passwords for themselves. "It makes things much easier for the end user," PJ Gupta, CEO of Amtel, said in an interview.
Senthil Krishnapillai, head of mobile security for SAP, told CSOonline: "It tremendously improves the usability of the application, and combined with fingerprint reading, it gives you true two-factor authentication."