Given their crucial role in conducting day-to-day business within enterprises, it can be easy to forget that smartphones are, first and foremost, consumer devices. In fact, consumer mandates — for more features, a self-contained user experience and a thinner form factor — have largely dictated the security architecture of these devices. And this consumer-centric paradigm has proven to be the Achilles’ heel for mobile security.
In this article, I’ll explore the three fatal flaws that have hamstrung mobile security and look at emerging options for protecting enterprise data from users’ untrusted smartphones.
Drowning In Code
Smartphone manufacturers have long pushed built-in services and features as both a selling point to win customers and as a way to create a sticky user experience to keep them locked into the platform. In the case of the iPhone, these services include iMessage (instant messaging), FaceTime (video telephony), iCloud (cloud storage), Siri (virtual assistant) and many more. New features are continuously being added to iOS, from the fun (new emojis) to the practical (improved battery performance). Critically, all of these services and features must work for the entire spectrum of iPhone models. more