Mobile devices provide a tremendous productivity growth to businesses of all sizes. We know of productivity gains of up to 1 to 2 hours per day. Businesses are taking notice. Analysts are forecasting increasing mobile spending in the years to come. And add the hype and the excitement around devices such as the Apple iPhone and BlackBerry Bold, I see steady uptake of mobility by business users as well.
Of course, as with any technology rollout and support, the process has to be managed diligently. The right tools and workflow need to be in place. Worst case scenario questions need to have answers – especially, when you consider some of the security bullets Todd recently blogged about with laptops. Security cannot be an after thought or a “supporting” feature – security and management of the entire mobile solution needs to be the foundation.
RIM is the industry leader in this space. BES can enforce 100s of IT Policy, deliver WiFi and VPN profiles wirelessly, push required business applications and exclude restricted applications. BES has been able to do this for a few years now. RIM even held off on delivering key features such as Bluetooth, Camera, and removable SD Cards, until it could securely enforce the most restrictive policies on these hardware features. Of course, RIM is doing all for this over an efficient, AES-encrypted, globally available BlackBerry network.
Now, contrast that with some of the newly announced Apple iPhone Administrative capabilities. Policies and settings are stored in an XML file on the server. (Oh and the server needs to be a Mac.) There is no role based access – anyone that has access to the administrative UI can change anything and everything. Then, it’s up to the user to connect their iPhone to their workstations and accept the policies. They can even choose not to accept some of the policies. The XML files that are downloaded are unencrypted and any VPN and WiFi passwords are in clear text. eWeek has a more detailed review of the Configuration Utility. The lack of controls over the hardware (such as camera and Bluetooth) and other applications (such as turning of SMS) also leaves a lot to be desired for. I am sure Apple has plans to address some of these gaps, but what Apple needs to realize is that these issues are concern #1 for CTOs in Financial Services. Push Email, a great media player and GPS are nice, but manageability is premier in the enterprise.
If designed and built well, security can be seamless to the end user. Sure - I have to type in a password to unlock my device, but I am used to the same experience on a desktop. This is not something I find especially annoying. However, if my IT admin requires me manually tether and then find and install software and policies myself – either I wont do it or will get it wrong. Apple has done very well with the iPhone. Businesses are taking notice. However, the bar is high. Security and usability are not two diametrically opposed – BlackBerrys prove this.