Embed Size (px)
DESCRIPTION
OpenTrust CMS MobileCase Studies 2012-2013
Citation preview
OpenTrust CMS MobileCase Studies 2012-2013
© OpenTrust - All rights reserved.
Case Study: Wi-Fi on iPad
Background Large pharmaceutical multinational company deployed over all continents Thousands of sales people on the move Local Wi-Fi in each building set up by local teams: mobile users need to hold
credentials for each building they are visiting
Solution Create a dedicated worldwide CA for Wi-Fi user authentication Implement certificate-based authentication rules on all Wi-Fi access points Distribute X.509 certificates to all mobile users for authentication
Challenges Deploy certificates to 5,000 iPad users without
HelpDesk intervention Manage certificate lifecycle: revoke, renew, re-issue
Outcome OpenTrust CMS Mobile in direct management mode Users enroll just once No need to remember Wi-Fi specific passwords Worldwide deployment in one clean pass
2
© OpenTrust - All rights reserved.
Case Study: Mobile S/MIME
Background Large multinational company in a competitive business for transport, energy Mobile e-mail is an essential tool for worldwide negotiations
Solution Deploy S/MIME for email protection Distribute X.509 certificates to all users for encryption, signature
Challenges Deploy S/MIME signature certificates to all mobiles Deploy S/MIME encryption certificates to mobile
devices, desktops, laptops Manage certificate lifecycle: revoke, renew, re-issue,
recover
Outcome OpenTrust CMS Mobile in direct management mode Mobile users enroll just once All emails are protected end-to-end
3
© OpenTrust - All rights reserved.
Case Study: Wi-Fi on WinCE
Background Manufacturing company using WinCE devices in factories Need strong device authentication on Wi-Fi without password
Solution Deploy X.509-based authentication on Wi-Fi Access Points Distribute X.509 certificates to factory devices
Challenges Implement X.509-based authentication on Wi-Fi Distribute device certificates to several hundred
devices.
Outcome OpenTrust CMS Mobile in direct management mode Each device is enrolled just once No need for Wi-Fi passwords Connections are traced by device
4
© OpenTrust - All rights reserved.
Case Study: S/MIME + Wi-Fi + VPN
Background Manufacturing company deploying X.509 authentication on all networks Need protection on wireless networks and all emails, mobile and desktop
Solution Deploy X.509-based authentication on Wi-Fi Access Points Deploy X.509-based authentication on VPN appliances Distribute X.509 encryption and signature certificates to all mobile devices,
laptops, and desktops for S/MIME email protection
Challenges Implement X.509-based authentication network-wide Distribute signature certificates onto all devices Manage encryption certificate distribution, including
on mobile devices
Outcome OpenTrust CMS Mobile in direct management mode,
to be migrated to MDM mode with Air-Watch No need for Wi-Fi or VPN passwords Signed/encrypted emails end-to-end
5
© OpenTrust - All rights reserved.
Case Study: Wi-Fi on Android tablets
Background Bank deploying X.509 authentication on Wi-Fi networks for mobile devices Devices are mostly Android tablets
Solution Deploy X.509-based authentication on Wi-Fi Access Points Deploy Mobile Device Manager from Air-Watch Integrate CMS Mobile and Air-Watch to distribute authentication certificates
to all Android tablets
Challenges Integrate between MDM and existing PKI Integrate with local user directory Manage authentication certificates on Android tablets
Outcome OpenTrust CMS Mobile in MDM mode No need for Wi-Fi passwords
6
© OpenTrust - All rights reserved.
Case Study: Mobile VPN
Background Company providing X.509-based VPN to all devices (BYOD) Devices can be anything supporting that VPN and X.509 authentication
Solution Deploy X.509-based authentication on VPN gateway Deploy Mobile Device Manager from Air-Watch Distribute authentication certificates onto all compatible devices
Challenges Integrate with MDM, bring stand-alone Mobile PKI Integrate with local user directory Device type is hidden from CMS Mobile
Outcome OpenTrust CMS Mobile in MDM mode VPN on all compatible devices
7
Thanks for your attention.
11-13 rue René Jacques - 92131 Issy-les-Moulineaux Cedex -France
+33 (0)1 55 64 22 00 - www.opentrust.com
Musaad Al-Saleh Bldg.Soor Street, Al-Sharq, KuwaitP.O.Box: 5113,Safat 13052,Kuwait.TEL: (+965) 2241 7966/5/7FAX: 2459019WEB: www.kcs.com.kwEMAIL: [email protected]
