Enterprise Android - Mind the gap

Transcript

1. View Slide

2. MIND THE GAP
   Rugged Devices and Enterprise Android
   PIETRO F. MAGGI
   EMEA SW Consultant Sales Engineer
   

   View Slide

3. Zebra Spotlight
   3
   R&D Spend
   10%+
   of Sales
   ~$3.65B
   Global Sales
   6,500+
   Employees
   Worldwide
   4,600+
   US & Int’l
   Patents Issued
   and Pending
   

   View Slide

4. 45+ Years of Innovation
   4
   First All-touch Android
   Inventory Solution.
   Increases Productivity
   by 14%.
   First Rugged
   Enterprise
   Digital
   Assistant
   First Rugged RFID
   Handheld and First
   Enterprise Digital
   Assistant (EDA)
   First Thermal Printer
   for On-demand
   Barcode Labeling
   Founded as Data Specialties by
   Ed Kaplan and Gary Cless
   First Handheld
   Laser Barcode
   Scanner
   First Barcode
   Printer
   First Laser-Scannable
   Two-dimensional Barcode
   First Wearable
   Computer
   First Mobile RFID
   Printing Solutions
   First Smart
   Environment
   for Thermal
   Printers
   First IoT Platform for Enterprise
   Applications (Zatar)
   First Android-
   based
   Enterprise
   Wearable
   Computer
   Only Migration Path
   to Modem OS for
   Legacy Windows
   Applications
   1969 1982 1986 1991 1997 2004 2008 2013 2015 2016
   

   View Slide

5. Enterprise Asset Intelligence™
   5
   RFID
   Cloud-Based
   Device
   Management
   Card Printing
   Mobile
   Computing
   Location and
   Motion Sensing
   Data Capture
   Barcode
   Printing
   INTERNET
   OF THINGS
   CLOUD
   MOBILITY
   

   View Slide

6. MOBILE COMPUTING
   Zebra Products Overview
   6
   Handheld
   Tablets
   Vehicle Mount
   DATA CAPTURE
   RFID
   Hands-free
   Handheld
   PRINTERS
   Industrial RFID
   Card
   Mobile Desktop
   Print Engines
   Scan Engines
   Wearables
   

   View Slide

7. EXTENDED SUPPORT OF WINDOWS-EMBEDDED OS
   ENDS IN 2020
   THE END OF A LEGACY
   DEMANDS CHANGE
   

   View Slide

8. View Slide

9. 2 billion
   Android devices*
   * Monthly active Android GMS devices
   

   View Slide

10. 2013 EMC PORTFOLIO
    RhoMobile
    Mobile
    Device
    Management
    Document
    Capture
    WiFi
    PTT
    VoIP
    Telephony
    Client
    SOFTWARE
    Mobile Workforce
    Management
    Platforms Utilities
    MobiControl
    Application frameworks
    Voice
    Enabled
    TE
    ACCESSORIES
    IHV
    COMPATIBLE VALIDATED
    MC55A
    HC, FIPS
    MC75A
    HC, HF, HzL,
    FIPS
    MC9500
    HzL, FIPS
    MC65
    ES400
    ET1
    Android
    MC17
    CUSTOMER FACING FIELD MOBILITY
    MC40
    Android,
    HC
    SB1
    FIPS
    MC45
    FIPS
    MC67
    FIPS
    EP10
    TC55
    Releases
    NA Q1
    Android
    TASK SPECIFIC
    INDUSTRIAL MOBILITY
    KNOWLEDGE WORKER
    LINE WORKER
    MC1000 MC2100 MC9XX0
    HzL, FIPS, uhf
    VC5000
    VC6000
    FIPS
    VC70
    FIPS
    vehicle
    WT41N0
    FIPS
    RS419
    RS507
    HC1
    wearable
    VH10/VH10f WAP3 Omnii
    XT15
    ni, f
    8585/95
    8515 8525/30
    MC3190
    Brk, Gun, Rotate,
    Uhf, FIPS
    

    View Slide

11. ZEBRA MOBILE COMPUTER PORTFOLIO
    RETAIL HOSPITALITY, HEALTHCARE
    FIELD MOBILITY, DSD, PARCEL POST
    MC40
    HC, FIPS
    SB1
    HC, FIPS
    TC55 MC45
    MC17
    MC18
    TC70, TC70x WLAN
    TC75, TC75x WWAN MC55A
    LAN ONLY, FIPS
    MC67
    Base, NA, Dual WAN
    ET50
    ET55
    8”, 10”,
    Win 8.1, Android
    Healthcare:
    TC51 WLAN
    TC56 WWAN
    NEXTGEN PRODUCTS
    BUSINESS TOOLS PRODUCTIVITY TOOLS MANAGEMENT TOOLS DEVELOPMENT TOOLS
    WorkForce Connect TekSpeech Pro SmartDex
    SimulScan All Touch TE
    Swipe Assist
    PowerPrecision Enterprise
    Keyboard DataWedge
    App Gallery
    StageNow
    EMM Toolkit
    Enterprise Home Screen
    Enterprise Browser
    EMDK for Android, Xamarin
    Mx Mobility Extensions - Superior Security, Manageability, Data Capture, And Connectivity
    Mobility DNA
    MC2100
    WAREHOUSE, MANUFACTURING, BACK OF STORE
    VC70
    FIPS
    WT41N0
    RS419/507
    WT6000
    RSX000 (4 & 5, 6)
    Workabout
    Pro 4
    8595
    MC3200
    Brick, Gun, Rotate,
    MC31 UHF
    MC9200
    Hazloc, MC91 UHF
    VH10
    F, NB
    Omnii XT15
    NI, F, NB
    VC80
    TC8000
    NEXTGEN WEARABLE
    

    View Slide

12. HARNESS THE POWER OF SUPERIOR
    SOFTWARE AND HARDWARE
    ENGINEERED FOR ZEBRA MOBILE COMPUTERS
    BUILT ON THE ANDROID™ OS
    GIVES MOBILE COMPUTERS UNIQUE ENTERPRISE CAPABILITIES
    EQUIPPED WITH ENTERPRISE-GRADE SECURITY
    WHAT IS
    ZEBRA MOBILITY DNA?
    A UNIQUE ECOSYSTEM OF SOFTWARE
    

    View Slide

13. Applications
    Lower risk and expense with purpose built
    ready-to-use enterprise applications – all
    backed by Zebra. Trust these vetted
    industry-specific applications to help you
    optimize productivity and operations.
    Development Tools
    Gain the ease of consumer smartphone
    platforms, without sacrificing the critical
    data functionality of enterprise solutions.
    Building, promoting, and delivering
    applications is the backbone of Zebra
    ISV’s. Our goal is to make their job
    easier and more efficient.
    SimulScan
    AppGallery RhoMobile
    All-Touch Terminal
    Emulation
    EMDK for Android
    Mobility DNA: What’s Inside?
    Utilities
    Using our robust set of utilities, companies
    gain simpler management, tighter security,
    and enhanced product performance.
    Which collectively keeps workers – and
    business – moving forward.
    Workforce Connect Enterprise Browser PowerPrecision Battery
    Stage Now Enterprise Keyboard
    Mobility Extensions (Mx) Swipe Assist
    Enterprise Home Screen
    

    View Slide

14. StageNow
    Grow your business
    Offer Staging as a service or share StageNow with your customers
    Save Money
    “StageNow saved us 13.5 man-years of staging effort”
    Reduce Complexity
    From 50-100 detailed steps to a few simple steps!
    Simplify Process
    1 barcode, or 1 NFC tag. Not 20 barcodes!
    

    View Slide

15. P
    1 3
    2
    How it works...
    

    View Slide

16. Zebra MX:
    Mobility eXtensions
    

    View Slide

17. Android for LoB Applications
    The Enterprise is the Device Owner
    As such, the Enterprise needs a
    scalable way to manage devices to
    ensure they are configured in a
    manner that meets business needs
    and as is less at risk from Device
    User mistakes
    Making Android Enterprise Ready since 2012
    Source: https://developer.android.com/work/cosu.html
    Android for Consumers
    The User is the Device Owner
    Configuration of the device is
    manually done by the User, via
    the in-device Settings UI.
    

    View Slide

18. MX was created to fill the Enterprise
    “Manageability Gap” for Zebra Android
    devices, by giving access to:
    • Privileged functions that would otherwise
    require an MDM Agent to be signed
    • Proprietary functions that would require
    an MDM Agent to be OEM specific
    Evolution of Mobile Device Manageability
    Zebra MX – Proprietary is better than nothing
    Zebra created MX to fill the
    Enterprise “Manageability Gap”
    for Zebra Android devices
    2010s
    

    View Slide

19. Visit android.com/enterprise
    Android enterprise
    Built for business. Backed by Google.
    (formerly Android for Work)
    

    View Slide

20. Single-use APIs for COSU
    Runtime permissions
    Improved certificate support
    Data usage tracking
    Work security challenge
    File-based encryption
    Always on VPN
    Temporarily suspend apps
    Turn off work mode
    Managed work profile for BYOD
    Work managed device for corp-liable
    devices
    Managed Google Play for
    app distribution & management
    Consistent device management
    APIs for EMMs
    Zero-touch enrollment
    Work profiles on corp-liable devices
    Employee privacy disclosures
    Streamlined profile setup
    Lollipop Marshmallow Nougat Oreo
    

    View Slide

21. Development tools
    

    View Slide

22. Enterprise Browser – Build feature-rich web apps that integrate seamlessly into our mobile computers
    DataWedge APIs – operate through Android intents--specific commands that can be used to control data capture
    Xamarin EMDK – Use Xamarin to build enterprise application targeting Zebra’s Mx features through profiles and custom APIs like:
    • Barcode
    • Simulscan
    • Serial
    • Cradle
    • Scan and Pair
    Android EMDK – Use Android native tools to control Zebra’s Mx features through Profiles and custom APIs like:
    • Barcode
    • Simulscan
    • Serial
    • Cradle
    • Scan and Pair Same features*
    * SecureNFC, for TC75, is only available in Android EMDK
    

    View Slide

23. Config.xml for basic setup
    Keyboard reconfiguration
    Advanced debug capabilities
    DOM Injection for powerful Web App modernization
    Enterprise Browser: Client side customization
    

    View Slide

24. Enterprise Browser: Custom Button Bars
    

    View Slide

25. Recompiling an existing .NET Compact Framework application using Xamarin is
    not an easy task:
    1. There’s no WinForm library
    2. There’s no ADODB library
    3. The applications built 10 years ago and grown organically over time usually
    doesn’t have (anymore) a MV* architecture.
    4. New devices allows new use cases that require new development
    ITR Mobility’s iFactr can help on the first two point providing a virtualization
    framework, but there’s really no easy solutions for the other two points.
    Xamarin: Reuse of code?
    

    View Slide

26. Using Xamarin has advantages especially when planning to reuse skills:
    1. Team still needs to support existing .NET Compact Framework apps and
    work on new Android application
    2. Developers doesn’t need to learn a new environment (Android Studio) or a
    new language (Java)
    Future proof application
    Can be a nice way to reduce the cost to bring an application to a new/different
    OS in the future.
    Xamarin: Reuse of skills?
    

    View Slide

27. A Xamarin app on Android is running on the Mono VM, the rest of the
    OS/Frameworks are written in Java and running on a different VM with a
    different Garbage Collector. Managing object across the two environment/GC is
    not an easy task. Xamarin is still improving this part:
    http://blog.xamarin.com/xamarin.android-garbage-collection-improvements/
    Most of the Android ecosystem is linked to the Java language. Open-Source
    libraries, answers on forums like Stack Overflow and third-party libraries may be
    only available in Java; A Xamarin binding is not always available.
    It’s all good in Xamarin land?
    

    View Slide

28. Android Security
    

    View Slide

29. Real-World Data on Vulnerabilities/Exploits
    Vulnerability Initial Claim Headline Unique APKs
    Peak exploitation after
    public release (per
    install)
    Exploitation before
    public release
    (absolute)
    Master Key
    99% of devices
    vulnerable
    1231 < 8 in a million 0
    FakeID
    82% of Android users
    at risk
    258 <1 in a million 0
    Stagefright
    95% of devices
    vulnerable
    N/A None confirmed N/A
    Source: Google Safety Net Data; Masterkey data collected from 11/15/2012 to 8/15/2013 and previously published at VirusBulletin 2013. Fake ID data
    collected data collected from 11/15/2012 to 12/11/2014 and previously published at the RSA Conference 2015. Stagefright data current through May 2016.
    

    View Slide

30. Q4 2014 Q2 2015 Q4 2015 Q2 2016 Q4 2016
    Google Play only
    Third party app stores
    + sideloaded
    1.5%
    1.0%
    0.5%
    0.0%
    1.36%
    1.03%
    1.45%
    1.58% 1.56%
    1.01%
    0.87%
    0.99%
    1.05%
    0.05%
    0.08% 0.08% 0.10% 0.12%
    0.20%
    0.06% 0.05%
    Google Play: 99.95% devices free of potentially harmful apps
    

    View Slide

31. Management APIs
    EMM enforced policy controls
    Android provides
    multiple layers of security
    to keep your device and
    data protected
    Hardware
    Dedicated secure hardware
    elements carry out the most
    critical tasks
    OS platform
    Complete platform
    security ensures device
    and data integrity
    Google Play Protect
    Always-on app analysis
    scanning and removal
    

    View Slide

32. Zebra’s role in Android
    devices security
    

    View Slide

33. Zebra Security – 3 Key Paradigms
    Build on a
    solid
    foundation
    Android
    Enterprise
    Focus on
    the task
    EMM, Kiosk
    Security Life
    Cycle
    Management
    

    View Slide

34. LIFEGUARD
    FOR
    ANDROID
    

    View Slide

35. HOW TO SECURE
    ENTERPRISE PLATFORMS?
    Enterprise Demand
    New OS Platforms
    1
    Consumer Market
    Adoption is required
    2
    Successful Consumer OS
    Will Be Aggressively Attacked
    3
    30 Day / Quarterly Security Patch Updates
    

    View Slide

36. HOW DO I STAY SECURE MEETING MY
    TOTAL COST OF OWNERSHIP GOALS?
    Consumer Operating Systems
    Have limited security support life
    1
    Security Patches 2+ Years Beyond End-of-Sale
    Enterprise Customers keep
    devices in services for 5yrs or more.
    2
    

    View Slide

37. HOW DO I STAY SECURE
    DURING OS UPDATES?
    Security OS Transition Period (OTP)
    Consumer Operating Systems
    Have limited security support life
    1
    Enterprise Customers keep
    devices in services for 5yrs or more.
    2
    

    View Slide

38. Typical Consumer Zebra
    Device Life Cycle
    Device Avail for Sale No commit, <2yrs 3, 4 or 5yrs
    Post End of Ship Service None
    Additional
    3, 4 or 5yrs
    Typical Customer Device Refresh 24-29 months* 3-7yrs +
    Zebra vs Consumer
    Security Life
    Cycle
    30 Days Security Updates Some Vendors Yes1
    Security Patch Level Indication Yes (M+) Yes (M+)
    Update Duration from First Ship 36 months / 40 months *60 months / 84months
    OS Transition Period None 12 months
    Extended OS Transition Period None Available ($)
    1 Security Updates released every quarter during the extended life cycle
    

    View Slide

39. View Slide

40. …and Mind the Gap!
    THANK YOU
    

    View Slide