MOBILE SECURITY BY BizzTrust
Mobile devices like smartphones and even more tablets are popular – there cannot be imagined a life without them. Not only are they used intensively for private communication they do play an important role for business needs, too. Moreover mobile devices become more and more popular for the extensive application in companies and public authorities in order to increase efficiency.
At any time and place one is able to access the corporate network and its sensitive data. Simultaneously any private app can be installed and used on the same device.
High security risks go along with the use of mobile devices. Data like contacts or E-Mails that are being saved on smartphones can easily be read-out. Protection via password or PIN does not suffice and can easily be eluded. Mobile devices tend to be lost or are stolen often – this enables strangers to access sensitive business data. The main risk in this context is malware, also inside applications. By using malicious Apps, attackers try to steal data of any application on the mobile device. This might concern contacts, message, voice communication and E-Mails or information about credit cards that are entered while doing online banking.
Adequate security measures are therfore indispensable requirements for the positive and efficiency-raising use of mobile devices in enterprises.
SEPARATION OF PRIVATE AND BUSINESS, DATA AND APPS
BizzTrust(TM) by Sirrix provides a platform for smartphones and tablets that fulfills any requirement for a secure use. Based on the hardened TURAYA(TM) security kernel for Android, the system is divided into two areas: an open “private” and a protected “corporate” area. Applications and data in each area are strictly separated from each other. Hence, even if users install private Apps, they cannot attack sensitive business data.
The innovative basic technology was developed in collaboration with the Fraunhofer Institute for Secure Information Technology (SIT), Germany's leading research facility for IT-Security.
SECURE ACCESS TO BUSINESS RESSOURCES
The separation between an „corporate“ and “private” area enables to access safely to business ressources. Applications inside the corporate area can access and exchange data like E-Mails, contacts, calendars and Intranet via a secure VPN-tunnel. The access to external websites inside the corporate area is protected by a corporate firewall that filters off dangerous content.
BizzTrust moreover offers an easy-to-use E-Mail encryption according to S/MIME standards and end-to-end security. Voice communication can be encrypted easily and extensively with optional available modules (secure telephony). At the same time, the flexibility of a smartphone is maintained. In the private area Apps can be installed as desired without affecting the flow of communication inside the corporate network.
CENTRAL MANAGEMENT BY TRUSTEDOBJECTS MANAGER (TOM)
In order to use BizzTrust efficiently Sirrix‘ invented the TrustedObjects Manager (TOM) which is a central management with an high-availability for an enterprise wide use. The “TOM” allows distributing software and firmware-updates of security profiles as well as the remote configuration of the devices. Applications that are approved by the enterprise and installed inside the secure area can be managed centrally via the “TOM”.
In addition, the “TOM” integrates an entire public-key infrastructure (PKI) with certification authority (CA) that controls the generation of a company-wide distribution of software certificates for VPN and E-Mail encryption. Linking BizzTrust to directory services as well as the optional integration of existing CA’s build the base for a fast and easy integration into existing company infrastructures.