Securing Mobile Devices

Develop – Educate – Blueprint – Prepare Mobile devices comprise a large number of today’s corporate assets and data stores. Mobile devices include, but are not limited to, laptops, handheld PDAs, and smartphones.

The documents included in Stage 1 provide a foundation for initial assessment of security product and solution selection. Although these documents are not mobile device specific the concepts and models discussed comprise a systematic, comprehensive approach to information security which can be used as a baseline and framework for strategic deployment.

Documents

• A Systematic, Comprehensive Approach to Information Security
• Making Business Sense of Information Security
• Risk Management: Concepts and Frameworks
• Information Security Technology Model

Design – Construct – Diagram Mobile devices comprise a large number of today’s corporate assets and data stores. Mobile devices include, but are not limited to, laptops, handheld PDAs, and smartphones.

The documents included in Stage 2 provide the architectural "stake in the ground" assessments related to topics enterprises should consider when assessing mobile security including encryption, host security choices, and information confidentiality.

Documents

• TP: Encryption
• TP: Host Security Choices
• TP: Information Confidentiality
• TP: Malicious Software
• TP: Remote Network Access

Assess – Evaluate – CompareMobile devices comprise a large number of today’s corporate assets and data stores. Mobile devices include, but are not limited to, laptops, handheld PDAs, and smartphones.

The documents included in Stage 3 provide product reports that detail specific technologies and the vendors offering them.

Documents

• Security in the Palm of Your Hand
• Encryption for Mobile Hosts: Protection on the Fly
• Enforcing Access Security: Maturing Role for SSL VPNs