Nowadays, BYOD, the short for Bring Your Own Device or Become Your Office Device, has become an irresistible trend. To be specific, BYOD, Bring Your Own Device is a realistic office scene that mobile devices such as personal computer, mobile phone, tablet personal computer are used to work online whenever and wherever possible. However, since staffs can make use of enterprise resources after they install corresponding software, their mobile device becomes office device. In such cases, the security of mobile device closely links to whole enterprise business data security. Therefore, more and more enterprises lay much emphasis on staffs' mobile device security. Aiming at practical demands, some sharp-sighted manufacturers gradually promote solutions to maintaining mobile device security. To lower the risk to enterprise business data security in BYOD-dominant era, enterprise managers need to carry out timely and effective risk evaluation. Here, several tricks to fix BYOD issue are introduced so as to protect enterprise business data security.
1. Password authentication
The static password is the main source of BYOD risk. Though those static passwords bring enterprise staffs much convenience in remote access to business data and system, enterprise managers also need to take the security and availability of passwords into consideration, so as to harden enterprise business data security. One-time password and second-time authentication strategies are useful to protect enterprise channel.
2. Secure VPN remote access based on SSL
Once user authentication is needed, enterprise must make sure that current network connection is secure or not. However, SSL-based VPN with high flexibility makes it possible for staffs to securely access to a network connection anywhere they want. Besides, unlike IPSec, SSL-based VPN provides safe remote connections, so it is unnecessary to install needed software on every mobile device.
3. SSO for password fatigue
Different application login requires for different sets of passwords, for same set of passwords may pose high risk to enterprise business data security. However, those sets of passwords fatigue most staffs. Owing to SSO, Single Sign On, staffs can rapidly and conveniently use enterprise portal websites or cloud applications.
4. Terminal node controlling
Network access of staffs is restrictly limited after they leave company. It makes the customer device management more flexible. Via terminal node controlling, enterprise can rapidly delete network access of specified users without redefining user group, which is time-saving and easy-to-handle.
5. Joint application ID
Joint application ID refers to the identification that is stored in multiple systems. For instance, you are only required to carry out one authentication when you want to sign in Renren or Sina Weibo with the same account. Therefore, much convenience is brought.
6. BYOD soft token
The triviality of devices poses great risk to security facilities. Via managing BYOD centrally, enterprises can lower their cost, update their device timely and mange potential threats to enterprise business data security effectively.