• Open Menu Close Menu
  • Apple
  • Shopping Bag
  • Apple
  • Mac
  • iPad
  • iPhone
  • Watch
  • TV
  • Music
  • Support
  • Search apple.com
  • Shopping Bag

Lists

Open Menu Close Menu
  • Terms and Conditions
  • Lists hosted on this site
  • Email the Postmaster
  • Tips for posting to public mailing lists
Re: [Fed-Talk] Re BYOD
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Fed-Talk] Re BYOD

  • Subject: Re: [Fed-Talk] Re BYOD
  • From: Peter Thoenen - NOAA Federal <email@hidden>
  • Date: Fri, 22 Feb 2013 09:15:53 -1000
> If we stick to IOS and Linux like in-channel update mechanisms are the
> resources required to vet loads worth it? If everything that is
> installed on the device comes from upstream on a device that you are
> willing to trust enough to have it in your users hands I think that
> may be sufficient for some level of generic use in the Enterprise.
> Depending on the Enterprise email system many MDM settings can
> be implemented through ActiveSync for data protection and device
> protection against common events. That same mechanism can be
> used to monitor and require OS updates as well. I would prefer to do
> checks against unusual traffic and services rather than using lots
> of effort to lock down devices. If the personal or Enterprise device
> configured in such a way that the average user has to carry two or
> more segregation of duties starts getting problematic on the devices.

TBH I'm not sure why we (NIST / government) waste the time with all this.
Just adopt a straight BYOD environment (including full on workstations) and
implemented a kiosk/hotel strategy to include even making devices on your
local wired LAN VPN in to the trusted servers/resources couple with fun
stuff like Terminal services, x windows over SSH, Zenapp, etc etc.

We are overcomplicating this trying to make BYOD mean "mobile" and mean
"special".  I know that isn't popular with the kingdom building fiefdom
security / system admin types but it's always seemed to me the future since
the private sector started experimenting with it in the early 00's.  Protect
what you care about (given our limited resources and all of us Federals on
this list know how tight security budgets are) and ignore the rest.

-Peter
 _______________________________________________
Do not post admin requests to the list. They will be ignored.
Fed-talk mailing list      (email@hidden)
Help/Unsubscribe/Update your Subscription:

This email sent to email@hidden
  • Follow-Ups:
    • Re: [Fed-Talk] Re BYOD
      • From: "Marcus, Allan B" <email@hidden>
References: 
 >Re: [Fed-Talk] Š. (was: CoreCrypto / CoreCrypto Kernel now in "In - Review"(CMVP)) (From: "Marcus, Allan B" <email@hidden>)
 >Re: [Fed-Talk] Re BYOD (From: Ron Colvin <email@hidden>)
 >Re: [Fed-Talk] Re BYOD (From: "Neely, Lee" <email@hidden>)
 >Re: [Fed-Talk] Re BYOD (From: Ron Colvin <email@hidden>)

  • Prev by Date: Re: [Fed-Talk] Re BYOD
  • Next by Date: Re: [Fed-Talk] Re BYOD
  • Previous by thread: Re: [Fed-Talk] Re BYOD
  • Next by thread: Re: [Fed-Talk] Re BYOD
  • Index(es):
    • Date
    • Thread