Are iPads secure enough? This guy thinks so.

Your rating: None (2 votes)

President Barack Obama receives the Presidential Daily Briefing from Robert Cardillo, Deputy Director of National Intelligence for Intelligence Integration, in the Oval Office, Jan. 31, 2012. Part of the briefing was done using a tablet computer. (Official White House Photo by Pete Souza)

Also, the U.S. Government is going BYOD...

Apple Data Protection

No votes yet

In the world of iOS corporate deployments, there is always a question about how the data is protected on those devices.

The Apple’s answer to that problem is called : Data Protection. A generic term that would need some explanation. I’d like to gather here the state of knowledge about that feature, so everybody can understand what « Data Protection » really is.

To make it simple, since iPhone 3GS every iOS device produced includes a dedicated AES-256 cryptographic chip that is used by the OS itself or third-party applications using some APIs.

The OS uses this chip to encrypt all data on the device using the UID (which is unique) of the device to generate the encryption key.

Data Protection is only an additional layer that allow (or force) the user, by choosing a passcode, to protect the iOS encryption key itself.

Here are some of the most interesting articles/documents on that subject so that you can get a better idea of what Data Protection really is and what it can do:

And we maintain a List of Apps that support Apple Data Protection.

(originally via iOS4Business.)

Complete List of iOS User-Agent Strings

Your rating: None (61 votes)

User-Agent strings are a standard part of HTTP used to identify a particular client to the web server. The web server can then choose to send customized content to that device.

iOS sends specific User-Agent strings that can identify the specific device and version of iOS. The following tables list the iOS UA prefixes.

User-Agent Prefixes

User-Agent prefix Apple product
Apple-iPhone/ iPhone, 3G or 3GS with iOS 3.x
Apple-iPhone1C2/ iPhone 3G with iOS 4.x
Apple-iPhone2C1/ iPhone 3GS with iOS 4.x
Apple-iPhone3C1/ iPhone 4 GSM
Apple-iPhone3C2/ iPhone 4 GSM
Apple-iPhone3C3/ iPhone 4 CDMA
Apple-iPhone4C1/ iPhone 4S
Apple-iPhone5C1/ iPhone 5 GSM
Apple-iPhone5C2/ iPhone 5 CDMA
Apple-iPhone5C3/ iPhone 5C GSM
Apple-iPhone5C4/ iPhone 5C CDMA
Apple-iPhone6C1/ iPhone 5S GSM
Apple-iPhone6C2/ iPhone 5S CDMA
Apple-iPhone7C1/ iPhone 6+ CDMA
Apple-iPhone7C2/ iPhone 6 CDMA
Apple-iPod/ iPod touch 1st, 2nd or 3rd generation with iOS 3.x
Apple-iPod2C1/ iPod touch 2nd generation with iOS 4.x
Apple-iPod3C1/ iPod touch 3rd generation with iOS 4.x
Apple-iPod4C1/ iPod touch 4th generation
Apple-iPod5C1/ iPod touch 5th generation
Apple-iPad/ iPad with iOS 3.2.x
Apple-iPad1C1/ iPad with iOS 4.2.x
Apple-iPad2C1/ iPad 2 WiFi
Apple-iPad2C2/ iPad 2 WiFi + 3G GSM
Apple-iPad2C3/ iPad 2 WiFi + 3G CDMA
Apple-iPad2C4/ iPad Mini - WIFI
Apple-iPad2C5/ iPad Mini - WIFI + LTE
Apple-iPad3C1/ iPad (3rd generation) WiFi
Apple-iPad3C2/ iPad (3rd generation) WiFi + 4G Verizon / International
Apple-iPad3C3/ iPad (3rd generation) WiFi + 4G AT&T / International
Apple-iPad3C4/ iPad (4th Gen, WiFi Only)
Apple-iPad3C5/ iPad (4th Gen, GSM, NA LTE)
Apple-iPad3C6/ iPad (4th Gen, CDMA, LTE)
Apple-iPad4C1/ iPad Air - WiFi
Apple-iPad4C2/ iPad Air - WiFi + LTE
Apple-iPad4C4/ iPad Mini with Retina Display - WIFI
Apple-iPad4C5/ iPad Mini with Retina Display - WIFI + LTE

Below is the complete list of known iOS UA identifiers.

Exchange ActiveSync Protocol

No votes yet

Exchange ActiveSync (EAS) is an XML-based protocol that communicates over HTTP (or HTTPS) designed for the synchronization of email, contacts, calendar, tasks and notes from a messaging server to a mobile device. The protocol also provides mobile device management and policy controls. (— Wikipedia, which has a useful history of Exchange ActiveSync versions.)

iOS Version Exchange ActiveSync protocol version
iOS 2.x v2.5
iOS 3.x v2.5, v12.1
iOS 4.x v2.5, v12.1, v14.0
iOS 5.x v2.5, v12.1, v14.0

Who needs WWDC? Enterprise iOS Meet-Up in New York City June 21 — Save the Date!

Your rating: None (2 votes)

Pencil in your calendars or tap into iCal: our virtual community is going live with a flesh-and-blood (not too much blood I hope) meet-up in June 21 in New York City. Connect with your follow iOS masters, swap stories from the trenches, kibbitz about the announcements from WWDC, and get inspired. We'll have a sponsor or two so the drinks will be free!

5:30 – 8:00 PM in the Flatiron District. I will post more details very soon.

Email Delivery Comes First

Richard G's picture
No votes yet

The MDM has overshadowed the real dilemma - what solution will provide the same type of service RIM has provided over several years?

Before we can discuss mobile device management we have to provide the email delivery in a timely manner that users have come to expect. 

We have looked at the sandbox approach (GoodLink) and the ActivSync native client solutions (McAfee).

Does anyone know of any other vendors that deliver email from the messaging system to the smartphones besides these two?

Adhoc Distribution - how to encrypt the binary?

macfan's picture
No votes yet

When deploying to the Appstore, the published applications are encrypted using Apple's binary encryption scheme. How can i use this for enterprise deployment?

iPad Editing Concept

Aaron Freimark's picture
No votes yet

I thought this was a cool concept — and presentation — of how text editing could be different on an iPad.

It is a reminder of how the platform is so new, and has much room to grow.

My Enterprise/Education iOS Wish List

Your rating: None (2 votes)

I wrote a blog post: here that I will repost:

With iOS 6 likely to be announced in a few weeks, I thought I’d explain my wish list from an education/enterprise perspective. Apple has quietly beefed up what mobile device management systems can do with each version of iOS (a lot of new things in iOS 5).

1. The ability to disable automatic Software Update (or require passcode to download)
While I love the ability to do over the air iOS updates, I also want to control when it happens. I don’t want a student to be able to install an update that I have not tested with our mission critical applications.

2. Install apps wirelessly with volume purchase program codes with no interaction from end user
While a lot of MDM providers have the ability to push apps to devices, they still require the end user to enter an iTunes password. I want to be able to silently install (and update) applications without an end user having to do anything.

3. Google Apps style iCloud account creation
While I love iCloud for personal use, it is tough use to use in an education/enterprise setup. The users either have to create their own account (most won’t do it) or I have to do it and then I will be responsible for keeping up with their information. Google Apps gives me all the benefits of a Google account while also being able to have control (set permissions, reset passwords, etc). I would love to be able to do this for iCloud

4. Require pass code to enter (or a toggle switch to turn off each setting individually)
This has become an issue with students using school owned iPads (cart scenario). Some of the students have found their way into the universal access section and changed some of those settings. I’d prefer to be able to lock them out of in general. Apple currently allows me to lock down Mail, Twitter, and iCloud.

Considering MDM? Compare 30 MDM vendors online and off with our community-generated chart.

Your rating: None (2 votes)

Whether you BYOD or not, Mobile Device Management is a crucial tool for managing iOS in the enterprise. And if you are doing research, our own Comparison of MDM Providers is one of the best resources we know of. The community-generated chart now lists 30 providers, and compares them by dozens of features. And today we added the ability to peruse offline with a PDF download.

We've gotten close to 100,000 views of the comparison, and as you can tell we're pretty proud of it. It is the result of an ongoing community project with dozens of contributors. Sign in with an account, and you can help improve each vendor's information.

Apple Configurator + VPP + Apps that Go Free For A Day

No votes yet

I spoke with Apple today regarding how apps that have a temporary price reduction of free affects Apple Configurator. Here was the response I got:

Apple Configurator checks to see if the app is free at the moment you import the app into Apple Configurator. If a free app is imported and Apple Configurator finds that it is no longer free, you will be required to import VPP app codes for it. If the app is still free as you import it then it stays free forever on that particular computer. Each computer does this check independently.

Apple releases iOS 5.1.1

Your rating: None (2 votes)

Apple has released iOS 5.1.1. Tap Settings > General > Software Update or connect to iTunes to install.

This update contains improvements and bug fixes, including:

  • Improves reliability of using HDR option for photos taken using the Lock Screen shortcut
  • Addresses bugs that could prevent the new iPad from switching between 2G and 3G networks
  • Fixes bugs that affected AirPlay video playback in some circumstances
  • Improved reliability for syncing Safari bookmarks and Reading List
  • Fixes an issue where 'Unable to purchase' alert could be displayed after successful purchase

What is the future role of the enterprise architect?

T. Reid Lewis's picture
No votes yet

In this interesting opinion piece, the folks at GigaOM present an interesting and provocative vision of the future role of enterprise IT in an era of could computing.

See the article here:

I'd be curious to hear the reaction to this hypothesis by folks who are enterprise IT professionals.

- Reid

WWDC Tickets On Sale. Sold Out.

Your rating: None (2 votes)

Well, that was quick.

Ticket's for Apple's annual Developer Conference went on sale this morning, and promptly sold out. It took less than two hours.

The conference is the only opportunity for most of us to interact with Apple engineers face to face. Although there used to be a track for systems administrators, the conference has increasingly focused on app development, for both iOS and Mac. And with the extremely short window for ticket purchases, it's unlikely that many business types got approval in time.

So did you get tickets? Let us know in the comments.

iOS Device Tracking

boxy's picture
Your rating: None (2 votes)

Hello All!

Does anyone know of a MDM solution that physically tracks iOS devices in real-time? So far the best things I have found are the tracking methods used by Apple's Find My Device and Air-Watch.

Also, does anyone know if there is a way to track these devices but prevent the user from clearing the settings that allows this tracking method?

Maybe a little background information would help describe what I am looking for. Our company wants to deploy some iPads but wants to be able to know where the device is at all times.

Any help is greatly appreciated and would love to hear how others are tracking/locking down their devices.

Recent Activity