KYDGS13 Mobile Device Management - David Roundtree

7/27/2019 KYDGS13 Mobile Device Management - David Roundtree

1/39

Copyright 2012, Oracle and/or its affiliates. All rights reserved.1

Mobile Device Management

David Roundtree, CISSPIdentity & Security

Public Sector | State & Local

Date: April 23, 2013


2/39


This document is for informational purposes. It is not a commi

deliver any material, code, or functionality, and should not be r

making purchasing decisions. The development, release, and

features or functionality described in this document remains at discretion of Oracle. This document in any form, software or p

contains proprietary information that is the exclusive property o

Oracle. This document and information contained herein may

disclosed, copied, reproduced or distributed to anyone outside

without prior written consent of Oracle. This document is not plicense agreement nor can it be incorporated into any contractu

agreement with Oracle or its subsidiaries or affiliates.


3/39


Agenda Todays Security Challenges

2012 Data Breaches

Enterprise Mobility Challeng

Mobile Identity Management

Mobile Identity Standards


4/39


INSIDEOUT

SECURITYSTEP BY STEPAPPROACH

DEDE



5/39Copyright 2012, Oracle and/or its affiliates. All rights reserved.5

Student Services

BusinessTransformation


CitizenServices

Remote MobileWorkforce

OnlineHealthcare

SocialIntegration

CloudServices

Most Si

in


6/39Copyright 2012, Oracle and/or its affiliates. All rights reserved.6

California Dept

of Child Support

Services

Health&Finance

recordsSTOLEN800k US Bureau of

Justice

Statistics

Sensitive DB

Leaked1.7GB

3.8MSta

Ca



7/39


Attacks cost $$$$ in State Government (2

State of South Carolina Dept. of Revenue >Approximately 3.8 million Social numbers, 387,000 credit and debit card numbers and 657,000 business tax filings were

a recent cyber-attack at the SC Department of Revenue. Fromhttp://www.sctax.org


8/39


STATE OF UTAH : DATA BREACH

UTAH CTO TAKES THE FALL.

RESIGNATION SOUGHT BY GOV. HERBERTAFTER BREACH EXPOSES DATA ON280,000 MEDICAID RECIPIENTS!!!!

The state has said it will offer free credit monitoring and

identity theft insurance coverage of up to $1 million forvictims of the breach.

Some analysts have held up the breach as a classic

example of the dangers weak or default passwords

controlling access to critical systems and

applications pose to enterprises.


9/39


1. Brand Decline = Loss of trust

2. Regulatory Fines

3. Finan



10/39


Mobile Devices in the Enterp

Employees, Citizens, Students, Vendorusing mobile devices

Evolution of BYOD > Bring your o


11/39


90%companieswith mobileapps in

2014

62%

will depend on sonetworking to conncustomers and pro

Store passwords76% Store passas10%

Source: Information w


12/39


Mobile Security is Beyond Device Mana

46%Of organizations that all

BYOD reported experie

data or security breach

50%Of helpdesks struggle to

up with mobile apps sup

Source: Mobility Revolution Re

MOBILE SECURITY STARTS FROM INSIDE

Source: Trend Micro Survey, F

58%Building corporate app s

Source: Partnerpedia Survey, A

& C


13/39


Mobile Identity & Access Challenges

?

Developer

Limited reso

support cha No SSO acr

mobile appli

Challenging

access to da

legacy syste Risky to allo

transactions

devices


14/39


Guess: The cost of remediating a breach

exceeds the cost of preventing a breach by

10XWe need to start taking a proactive ap

to security!!!


15/39


SS #s

Credit Card Info

Personal Profile

Denial of Service

Fraud

Collaboration

Privacy

PI

PC

NI

IR

HI

Identity Theft Quality of ServiceData Security

& IntegrityRC

BUSINESS HAVE


16/39


Demystifying Mobile IdentityManagement and Standards

Shujaat Ali

Principal Security Consultant


17/39


This document is for informational purposes. It is not a commi

deliver any material, code, or functionality, and should not be r

making purchasing decisions. The development, release, and

features or functionality described in this document remains at discretion of Oracle. This document in any form, software or p

contains proprietary information that is the exclusive property o

Oracle. This document and information contained herein may

disclosed, copied, reproduced or distributed to anyone outside

without prior written consent of Oracle. This document is not p

license agreement nor can it be incorporated into any contractu

agreement with Oracle or its subsidiaries or affiliates.


18/39


IntegratioInternalUsers Only

Not Scaleable

Propr ie tary

MaintenanceP o i n t 2 P o i n t Fragme

Custom

Inflexible

RigidLegacy

First Generat i

VPN Base

H

St

Slow

C l i e n t S e r v e

E x p e n s i v e



19/39


EMPLOYEEOWNED DEVICES

LIMITED P& STOR

DESIGNED FORWIRELESS & 3G

CHANGING MOBILE APPLICATION DEMANDS


20/39


APP

APP

APP

NATIVE

APP

APP

APP

APP


21/39


APP APP APP

APP APP APP

RESTVPNDOES NOT SCALE

Lower


22/39


State-full

Cross-network

Devi

Inde

SIMPLIFIES MOBILE APP

REST INTERFACES

Lower

Energy Usage


23/39


Corporate DMZ Corporate

Mobile and Social

Webgate

Data Interfaces /

Oracle Entitlements Server

API Gateway

Mobile Browser

Native Application

OAM Protected Resource


24/39


CONTEXTAWARE AUTHENTICATION

?

Device Aware !

Time Aware !

Location Aware !

D

F


25/39


PATIENTRECORD

xxx xx x

PATIENTRECORD


26/39


Select Login Authorize

REAL EXAMPLE CONN


27/39


Login with Facebo

or

Name:

College:

Major:

Minor:

Graduation Date:

Student Advisor:

High School:

Test Date:

Submit

REAL EXAMPLE CONN

COLLEGE TEST PREP S


28/39


Better Experience

Single Point of Revocation

Blacklist Devices


29/39


MONITORING &REPORTING


30/39


Browser & OS statistics

Alerts Location R

Access Trend


31/39


White Pages

GPS & WIFI Location

Device Registration

Device Tracking

KBA & OTP

User Registration

White\Black List

AccessManagement

PlatformSecurity Services

DirectoryServices

MobileInterfaces


32/39


Pi

I ns tagram

G o o g l e +

Facebook

Advertisements

GamesCuration

MixiSocial Mark

U R L S h o

Search Engine Optimization

S o c i a l P u

G a d g e t s

Renren

Promotions

kedIn

u m b l r

TwitterCopyright 2012, Oracle and/or its affiliates. All rights reserved.32


33/39


Pi

I ns tagram G o o g l e

FacebookYahoo!

Mixi flikr

V e r i s i g n

WordPress

M y O


MySpace

Yahoo!

AO


34/39


Pi

I ns tagram

G o o g l e +

Facebook

Advertisements

GamesCuration

MixiSocial Mark

U R L S h o

Search Engine Optimization

S o c i a l P u

G a d g e t s

Renren

Promotions

kedIn

u m b l r

TwitterCopyright 2012, Oracle and/or its affiliates. All rights reserved.34


35/39


Dro

Evernote

G o o g l e

Facebook

MySpace

TripIt

Yahoo!

OpenSo

N e t f l i x

Photobucket

Y a m m


SmugMu

VLinkedIn

Twitter


36/39



37/39


Questions?


38/39


FOR YOUR ATTENTIOTHANK YOUFeel free to contact us at

[email protected]@oracle.com


39/39


Date post:	14-Apr-2018
Category:	Documents
Upload:	erepublic
View:	220 times
Download:	0 times

KYDGS13 Mobile Device Management - David Roundtree

Documents