Re: [Fed-Talk] BYOD
Re: [Fed-Talk] BYOD
- Subject: Re: [Fed-Talk] BYOD
- From: "Marcus, Allan B" <email@hidden>
- Date: Fri, 14 Sep 2012 19:30:42 +0000
- Thread-topic: [Fed-Talk] BYOD
I disagree. This is not an issue of what people will "stand for". BYOD is
a choice for both the company and the worker. The company says: if you
want to do company work on your personal device, e.g., access the company
network or e-mail, then you follow these rules (included passwords, remote
wipes, or whatever). The employee can choose to accept the rules of use
and thus get access to her e-mail, network, or whatever, or can choose not
to participate. BYOD is a convenience for the employees (so they only have
to have one device) and for the employer (to get as much stolen hours of
work from the employee as possible).
I have not heard of a federal agency that is considering requiring an
employee to bring their own device. The choice is up to the employee.
--
Thanks,
Allan Marcus
505-667-5666
email@hidden
On 9/14/12 12:59 PM, "Villano, Paul A CIV USARMY TRADOC (US)"
<email@hidden> wrote:
>As I said I really don't think folks will stand for having the Government
>install Government software on their personal devices, Good software or
>not. And a few lawsuits down the road with the real or perceived loss of
>privacy and I'm sure that will stop.
>
>Thanks! Your need is my mission!
>
>Paul
>
>PAUL VILLANO
>Knowledge Management Officer, GS-12
>Email: email@hidden
>Phone: 803-751-8153 *Email preferred
>USACHCS, "For God and Country!"
>"God bless you and save you from anything as dangerous as knowledge!" -
>Alexander Woollcott
>
>
>-----Original Message-----
>From: Marcus, Allan B [mailto:email@hidden]
>Sent: Friday, September 14, 2012 1:45 PM
>To: Villano, Paul A CIV USARMY TRADOC (US); Link, Peter R.
>Cc: email@hidden Talk
>Subject: Re: [Fed-Talk] Iphone 5 is a Fizzle with no Sizzle
>
>If you want to see the general architecture for government BYOD, see this
>document:
>
>http://www.whitehouse.gov/digitalgov/bring-your-own-device
>A Toolkit to Support Federal Agencies Implementing Bring Your Own Device
>(BYOD) Programs
>
>
>--
>Thanks,
>
>Allan Marcus
>505-667-5666
>email@hidden
>
>
>
>
>
>On 9/13/12 12:19 PM, "Villano, Paul Mr CIV USA TRADOC"
><email@hidden> wrote:
>
>>If the organization monitors the device and has sticky fingers with it
>>then it's not really BYOD as far as I can tell. Nobody is going to put
>>out hundreds of dollars for a device out of pocket and then have the
>>Army muck around and lock it down and have access to their personal
>>stuff.
>>The only way BYOD is going to ever work is if the Army does what it
>>says it does and trusts the educated user to do the right thing. The
>>DoD will have to trust the user because the user will certainly never
>>trust DoD to that level.
>>----- Original Message -----
>>From: "Link, Peter R." <email@hidden>
>>Date: Thursday, September 13, 2012 14:10
>>Subject: Re: [Fed-Talk] Iphone 5 is a Fizzle with no Sizzle
>>To: Todd Heberlein <email@hidden>
>>Cc: "Villano, Paul Mr CIV USA TRADOC" <email@hidden>,
>>"email@hidden Talk" <email@hidden>
>>
>>
>>> The DOE banner states that nothing on the computer is yours and you
>>> have no right to privacy; therefore, once a BYOD is used for DOE
>>> projects there's no way it goes back to the user, unless the proper
>>> MDM product is used that creates and stores all DOE data in a
>>> separate encrypted compartment, which can easily be wiped. (Wow,
>>> that's a long sentence.)
>>>
>>> The answer to all your questions depends on what the federal
>>> organization wants to do because I believe the capability to do all
>>> of what you ask for (except auditing but there might be something
>>> that does that) is currently available.
>>>
>>> You also bring up all the problems I see with BYOD and they are the
>>> same problems I see with government-owned mobile devices, which we
>>> all have to deal with.
>>>
>>>
>>> On Sep 13, 2012, at 11:01 AM, Todd Heberlein
>>><mailto:email@hidden>> wrote:
>>>
>>>
>>> On Sep 13, 2012, at 10:38 AM, "Villano, Paul Mr CIV USA TRADOC"
>>><mailto:email@hidden>> wrote:
>>>
>>> To get this back on topic the reason this is important is that it's a
>>>consideration with BYOD on the horizon.
>>>
>>> I see BYOD as a huge sea change.
>>>
>>> They are portable, so they are regularly outside the protection of an
>>>organization's network protection infrastructure. The devices are
>>>user-managed, so professional staff are no longer maintaining them.
>>>Analysis of activity inside the devices is darn difficult, especially
>>>with iOS devices (woe is me with audit trail analysis). Data is
>>>constantly being stored or at least cached on them, so what happens
>>>when the employee quits or is fired? Does the organization have the
>>>right to make sure no proprietary data is left on the person's personal
>>>device?
>>>What policies does the organization have when their employee travels
>>>to foreign countries with their devices (think China)?
>>>
>>> Given the fact that almost all of them have both cellular and WiFi
>>>connections, they can all serve as routers into your organization. How
>>>many routes are there into your organization's network? Count the
>>>number of mobile devices connected via WiFi.
>>>
>>> Just scary, scary, scary. And inevitable.
>>>
>>> Todd
>>>
>>> _______________________________________________
>>> Do not post admin requests to the list. They will be ignored.
>>> Fed-talk mailing list
>>>(email@hidden<mailto:email@hidden>)
>>> Help/Unsubscribe/Update your Subscription:
>>>
>>> This email sent to email@hidden
>>>
>>> Peter Link
>>> Cyber Security Analyst
>>> Cyber Security Program
>>> Lawrence Livermore National Laboratory PO Box 808, L-315 Livermore,
>>> CA 94551-0808 email@hidden<mailto:email@hidden>
>>>
>>>
>>>
>> _______________________________________________
>>Do not post admin requests to the list. They will be ignored.
>>Fed-talk mailing list (email@hidden)
>>Help/Unsubscribe/Update your Subscription:
>>
>>This email sent to email@hidden
>
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Fed-talk mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden