All Rights Reserved © Alcatel-Lucent 2008July 08
Securing the Mobile Blind Spot
Michael Hardiman,
Director of Business Development, Security Solutions, EMEA
All Rights Reserved © Alcatel-Lucent 20082 | Apr 18, 2023
The Enterprise Security Challenge – A UK Phenomenon!
All Rights Reserved © Alcatel-Lucent 20083 | Apr 18, 2023
The Enterprise Security Challenge
More than 50% of new corporate computer purchases are laptops.
“More than 600,000 laptop thefts occur annually” (Source:
Safeware Insurance)
“Average Value of Business Info on Travelers' Laptops Equals $525,000” (Source: CIO Magazine)
“…81% of respondents report that their organizations had one or more lost or missing laptop containing sensitive or confidential business information in the last 12 months…” (Source: Ponemon Institute, 2008)
“The average time from vulnerability announcement to exploit is now measured in hours.” (Source: Microsoft Corporation)
More than 50% of new corporate computer purchases are laptops.
“More than 600,000 laptop thefts occur annually” (Source:
Safeware Insurance)
“Average Value of Business Info on Travelers' Laptops Equals $525,000” (Source: CIO Magazine)
“…81% of respondents report that their organizations had one or more lost or missing laptop containing sensitive or confidential business information in the last 12 months…” (Source: Ponemon Institute, 2008)
“The average time from vulnerability announcement to exploit is now measured in hours.” (Source: Microsoft Corporation)
All Rights Reserved © Alcatel-Lucent 20084 | Apr 18, 2023
2006 London Black Cabs 54,872 mobile phones 4,718 handheld computers 3,179 laptops 923 computer memory sticks http://www.timesonline.co.uk/tol/news/uk/article652378.ece
2007 UK airports 8500 mobile devices lost 400 laptops & 2500 mobile devices in London airports http://www.infomaticsonline.co.uk/vnunet/news/2202920/travellers-lose-mobile-devices-airports
1H 2008 London Black Cabs & Airports Some 55,843 mobile phones 6,193 devices, such as laptops 900 laptops per week at Heathrow http://news.bbc.co.uk/1/hi/technology/7620569.stm
Portability = lose-ability !
All Rights Reserved © Alcatel-Lucent 20086 | Apr 18, 2023
CIOs describe confidence levels in preventing dangerous actions by laptop users
All Rights Reserved © Alcatel-Lucent 20088 | Apr 18, 2023
IT Managers Need to Eliminate the Mobile Blind Spot
When a laptop leaves the enterprise, IT loses control:
Secured only by local clients (Anti-virus, etc..)
Difficult to patch and backup
A lost or stolen laptop is the “nightmare” scenario for IT
No monitoring of the mobile device activity
Difficulty to enforce policies
Lack of asset inventory
Complicated for the end users
Lack of Visibility and Control over Mobile Laptops
All Rights Reserved © Alcatel-Lucent 20089 | Apr 18, 2023
Securing the Mobile Blindspot – a Mobile Service Manager
Trusted Platform / Secured Link for Wireless Devices
Fully Independent / Always Available
Open Architecture Enables 3rd Parties to Develop and Integrate Software
WiFi3G
WiMax
Connected?
Worms / Viruses / Intrusion / Disk Access / Data Tampering / Content Theft / OS Integrity
Secure Corporate Enclave
Configuration Data protection
Firewall Patch management Policies
Always-on – even when laptop is off Remote “kill” capability Policy enforcement Local Quarantine Secure all networking interfaces Off-hour back-ups + patching Location Authentication Auto VPN 3rd party capabilities
Trust-basedLink
Worms / Viruses / Intrusion / Disk Access / Data Tampering / Content Theft / OS Integrity
All Rights Reserved © Alcatel-Lucent 200811 | Apr 18, 2023
Case Study – Visiting Nurses Association of Northern New Jersey
Challenges
Multiple laptop PCs in the field
Sensitive clinical/financial data
Data vulnerable to loss/theft
No possibility to ‘lockdown’ data if PC is stolen/missing
Maintaining a reputable public image
Retain patients and employees
All Rights Reserved © Alcatel-Lucent 200812 | Apr 18, 2023
•
Enabling the Dynamic Enterprise
Alcatel-Lucent : partner to the Dynamic Enterprises
All Rights Reserved © Alcatel-Lucent 200813 | Apr 18, 2023
OEP
Hungarian National Health Insurance Fund
Business drive: Building a countrywide customer service with about 50 locations in rented
offices. These locations are build up for short period (less than 1 year) and frequent
changes/relocations are expected. So customer did not want to build LAN and site-to-site VPN infrastructure to
these rented locations. NLG is a great solution: no need for LAN/VPN infrastructure, 3G will be used
instead.
Most important feature of NLG in this case: auto-VPN over 3G
Future: integrated full-disc encryption solution as NLG integration is finished. Preferred solution: Checkpoint Pointsec