How do you handle mobile security?

by Volker Weber

Whether you are a Notes or Outlook user, you may have a mobile device that contains data which belongs to your company. How do you protect it? What are you worried about? What kind of policies does your company have regarding its data on mobile devices?

I am putting together a presentation on these things and I would like some real world input. I talk to security people, and each and everyone of them has their own ideas. USB devices are something that can go from completely forbidden to well supported. Some people rely heavily on encryption while others deploy management tools that let you trace or remote wipe devices.

What's your take? Please comment in English or German as you see fit. You can also send me stuff by mail. Please indicate whether that information is confidential, whether you would want to be quoted or not.

Comments

After a recently stolen laptop, I have started using TrueCrypt. My PST files and other potentially sensitive data are now on an encrypted virtual drive protected by a strong password. This is my own initiative, as our IT department does not support any encryption solutions at this time.

Richard Schwartz, 2009-03-11

Ich muss mich zum Glück nur mit einem Minimum an Daten auf meiner lokalen HD rumschlagen, nämlich die, die ich selbst erstelle (Briefe, Präsentationen, usw.) - das macht die Sache ungemein einfach.

Das Notebook ist per TrueCrypt verschlüsselt.
USB Sticks verwende ich in meiner Firma nicht - genau so wenig meine Mitarbeiter. Wir haben funktionierende Mailserver.
Mein Terminplaner ist analog... :)
Die Groupware für Terminplanungen ist anständig gesichert und ohne Kundenspezifische Daten. Nur ein "Beratung / Service / ...." und Ort + Dauer, so dass z.B. ein Mitarbeiter weiß, wann ich für Ihn Zeit hätte ohne warten zu müssen bis er mich ans Telefon bekommt. Das ganze synchronisiert mit meinem iPhone und meinem Handy.

IMHO am wichtigsten: ich lasse die Sachen nicht aus den Augen. Handy im Sacko, Terminplaner und Notebook in meiner Aktentasche, beides an mir, egal wann.

Timo Zimmermann, 2009-03-11

Die IT Abteilung setzt die Richtlinien der internene Sicherheitsgruppe um. Dafür werden den US Behörden Standards Rechnung getragen (wg. US Mutterkonzern).
Das heisst: alle mobilen Geräte sind grundverschlüsselt, bestimmte Dokuente und Informationen dürfen dort dennoch nicht gespeichert werden (Kundennetzdokumentation z.B.).
Ich persönlich habe den .pst File auf dem Fileserver liegen und binde diesen bei bestehender VPN Verbindung ein.

Olaf Baumert, 2009-03-11

I don't really do anything special when it comes to mobile computing. I always lock the screens when away from my computers and leave my computers not unattended when in a public environment, but I don't go as far as using encryption on devices.

Philipp Sury, 2009-03-11

I'm a bit paranoid with regards to theft or loss of my mobile devices. Windows laptop was fully encrypted and secured with SafeBoot while I still had that. For my Mac I use PGP Whole Disk Encryption (WDE), with pre-boot authentication. (Unfortunately, when the Mac is in sleep mode, that doesn't work -- upon wakeup the normal Mac login appears.)

I have a "corporate" BlackBerry (BES), so that is pretty safe, and it can be destroyed remotely. Other phones carry almost no data, except for contacts and calendar; bad enough, but there is pretty little I can do to fix that.

Jan-Piet Mens, 2009-03-11

Ich war auf der cebit etwas überrascht, dass die Businessuser durchgängig den Code-Lock am iPhone aktiviert hatten, die meisten sogar instant-on und teilweise war auch die SMS-Anzeige ausgeschaltet.

Security und Usability schließen sich nicht aus.

Kai Nehm, 2009-03-11

Recent comments

Jan Fuellemann on ANC Schalter für Beats Studio 3 in iOS 13 at 17:10
Volker Weber on Recording video on iPhone with Buetooth headset at 00:01
Gregory Engels on Recording video on iPhone with Buetooth headset at 22:41
Martin Hiegl on Cryptodamages: Monetary value estimates of the air pollution and human health impacts of cryptocurrency mining at 17:45
Markus Dierker on Recording video on iPhone with Buetooth headset at 08:25
Volker Weber on Cryptodamages: Monetary value estimates of the air pollution and human health impacts of cryptocurrency mining at 22:48
Maximilian von Hulewicz on Cryptodamages: Monetary value estimates of the air pollution and human health impacts of cryptocurrency mining at 08:09
Andreas Weinreich on Withings ECG :: Erste Eindrücke at 21:30
Andy Mell on Very fast October update for Galaxy S10 at 18:56
Volker Weber on Withings ECG :: Erste Eindrücke at 16:53
Bernd Fellerhoff on Withings ECG :: Erste Eindrücke at 15:23
Stanislaus Landeis on iCloud Drive file sharing delayed until spring 2020 at 12:55
Volker Weber on AirPlay 2 richtig verwenden at 11:52
Matthias Welling on AirPlay 2 richtig verwenden at 09:30
Volker Weber on AirPlay 2 richtig verwenden at 23:10
Steve Smillie on Very fast October update for Galaxy S10 at 21:58
Ragnar Schierholz on AirPlay 2 richtig verwenden at 21:34
Ragnar Schierholz on Withings ECG :: Erste Eindrücke at 18:05
Peter Meuser on Endlich habe ich Samsung DeX kapiert at 17:00
Torsten Pinkert on Very fast October update for Galaxy S10 at 16:45
Christian Tillmanns on Cryptodamages: Monetary value estimates of the air pollution and human health impacts of cryptocurrency mining at 16:17
Armin Auth on Lenovo Chromebook C340-11 #stuffthatworks at 11:49
Maximilian von Hulewicz on Cryptodamages: Monetary value estimates of the air pollution and human health impacts of cryptocurrency mining at 10:06
Markus Mews on Lenovo Chromebook C340-11 #stuffthatworks at 09:27
Christian Tillmanns on Cryptodamages: Monetary value estimates of the air pollution and human health impacts of cryptocurrency mining at 07:44

Ceci n'est pas un blog

I explain difficult concepts in simple ways. For free, and for money. Clue procurement and bullshit detection.

vowe

Contact
Publications
Stuff that works
Amazon Wish List
Frequently Asked Questions

rss feed  twitter  amazon

Local time is 20:07

visitors.gif

buy me coffee

Paypal vowe