MDM

NOAA: From BlackBerry to iPhones, Androids and (maybe) BYOD

When the National Oceanic and Atmospheric Administration began migrating from BlackBerry devices to the more open world of Androids and iPhones, it found it needed a replacement for the BlackBerry Enterprise Server to manage the new devices.

More MDM

Deploying mobile devices? A few questions to consider

Before devices can be secured and managed, agencies should answer questions about GPS tracking, personal/business use and other issues. Read more.

The agency was using a suite of applications available from Google Apps for Government, said Daniel McCrae, director of IT service delivery. “There were some basic mobile device management features with that,” he said. “But there were limitations.”

One of the greatest limitations is that, at least in the early stages of its mobile device transition, NOAA is primarily an Apple shop, with about 2,200 iPhones and only about 50 Android devices. “It became apparent that we needed a more robust enterprise class solution” to enforce policies and configuration on the devices, McCrae said.

NOAA last year procured the MaaS360 cloud-based enterprise mobility management service from Fiberlink to handle the job. It is being tested now in limited deployment as the agency works out how best to mesh mission needs with policy, and policy with technology for enforcement. It is beginning the process with agency-issued phones, but the goal is that lessons learned in the process will help allow personally owned devices in the enterprise, as well.

“We don’t have an official BYOD program yet,” McCrae said. “This could help us develop a business case that would support both user-owned and NOAA devices” in the workplace.

NOAA selected the Fiberlink platform after a full competition because of its support of a full range of devices and its large presence in the federal market. Fiberlink has more than 40 agencies among its customers, “every one of them trying to figure out their mobility strategy,” said marketing director Jonathan Dale.

“We cut our teeth managing mobile laptops” 20 years ago, said Jeff Ward., vice president of VP of federal business. 

The company moved to a cloud-based service in 2007 and today manages about 2 million devices, about 1 million of them laptops and the rest tablets and smartphones. The number of laptops under management continues to grow, Dale said, but the fastest growth is among tablets and phones.

There is a significant difference in how the two classes of devices are managed. The focus with laptops is on managing the device itself, its configuration, the software installed on it, the connections it is allowed to make. With tablets and smartphones, the focus is on managing the data and apps.

Why the difference? “A lot of the devices are no longer provided by the enterprise,” Dale said. “In many cases, IT no longer has complete control of the device.” There also tends to be less separation of work and personal activity on a phone or tablet. Although laptops also are used in both arenas, “you flip between personal and business more quickly” with the smaller devices, he said.

There also are limitations on how easily an enterprise can lock down and manage devices under mobile operating systems, which are intended to be user friendly for a consumer market.

Fiberlink’s approach to mobile management is containment. The device is not partitioned with separate operating systems, but MaaS360 maintains separate applications and workplaces for business use in encrypted containers and blocks data transfers between these and personal applications. “It’s an easier and more effective way to manage,” Dale said. “If you just look at the data, it doesn’t matter who owns the device.”

The user enrolls his device online and downloads an agent, and administrators then push policies to the device that can be enforced remotely.

BlackBerry has long had a strong presence in the federal market, but like many other agencies NOAA moved from that platform because of the lower cost and expanded features in competing smartphones. Initially, new phones are being issued on the basis of need, to personnel who must be available 24 hours a day or who need constant access to email. The vast majority are iPhones, but some Androids are being issued to see how security and application provisioning work across the two brands with MaaS360.

“Right now, it’s meeting all of our expectations,” NOAA’s McCrae said of the Fiberlink service. But the agency still is in the process of developing appropriate policies for mobility management, and the final word on enforcement technology will have to wait until all policies are in place.

About the Author

William Jackson is freelance writer and the author of the CyberEye blog.

Reader Comments

Thu, Aug 29, 2013 Adam

MDM solutions are an important part of dealing with the challenges presented by BYOD. But there are other aspects that need to be addressed, such as helping IT staff support a wide range of devices, or ensuring that employees can connect to their work applications. What's needed is a way to deliver applications to all types of devices while minimizing hassles for IT. For example, Ericom's AccessNow HTML5 RDP client enables remote users to securely connect from iPads, iPhones, Android devices, Chromebooks and more traditional laptops and PCs to any RDP host, including Terminal Server and VDI virtual desktops, and run their applications and desktops in a browser. AccessNow doesn't require any software installation on the end user device – just an HTML5 browser, connection and login credentials. An employee that brings in their own device merely opens their HTML5-compatible browser and connects to the URL given them by the IT admin. For an online, interactive demo visit: http://www.ericom.com/demo_AccessNow.asp?URL_ID=708 Please note that I work for Ericom

Thu, Aug 22, 2013

Just curious, why select Fiberlink instead of the industry leaders according to the Gartner Magic Quadrant which ranks them (1) AirWatch, (2) MobileIron (3) Citrix? Also, understand AirWatch is the only MDM that has successfully done a >25K install? Just curious?

Thu, Aug 22, 2013

Aren't all those phones made in China?

Thu, Aug 22, 2013

We have so many policies that we are locking our selves out of our systems. The only one that will be able to work will be the main IT guy, cause he controls everything. Careful what you wish for, because it might be the Trojan horse that bites us.

Thu, Aug 22, 2013

Be honest with you I never saw any features on the BB that would keep people from getting to it. Nothing special was on it that prevented someone from hacking into it. Just like iPhones and Androids, but iphones and androids are defintely faster and more memory already built into them, which make them more roBust. BYOD is the way to go for everyone becuase people do not take care of handed out phones, like they do there own. Plus less headaches for IT if they just handle there own problems, of course you will always have those people that you have to hold there hands to get anything done for them.

Please post your comments here. Comments are moderated, so they may not appear immediately after submitting. We will not post comments that we consider abusive or off-topic.

Please type the letters/numbers you see above