SMP - Enterprise Scale Mobility: Security & Identity Management
Tags:
SAP Mobile Platform: Enterprise Readiness Built-Ins
The SAP Mobile Platform (SMP) is a one-of-a kind solution for enterprises that take mobility seriously. SMP provides you with state of the art technology guaranteeing enterprise ready operations, with built in features including Security, Performance, Supportability, Lifecycle Management and more.
In this series of SCN pages, we drill down into Enterprise Readiness.You'll find links to White Papers, How-To Guides, recorded presentations and demos, Blogs and other resources that dive deep into any of the five selected topics.
SMP Enterprise Readiness: Webinar Series
In addition to the assets that you find on below SCN pages, we - the SAP Mobile Rapid Innovation Group (RIG) - host a series of webinars around Enterprise Grade Mobility with SMP.
The webinars will be presented by mobility experts from within SAP: Every week, every Thursday, and they are free to attend! And yes, we'll post recordings a few days after the sessions.
SMP on Topic: Security & Identity Management
Use these tabs to browse to the additional pages:
Enterprise Scale Mobility | Life Cycle Management | Performance | Security | Supportability |
Security Overview | Recordings from Webinar Series |
Mobile Technology challenges the Enterprise. Many companies implementing or extending the use of mobile technology in their organizations face challenges similar to those they faced when deploying corporate-wide software systems.
Historically, desktop machines were deployed within the firewall and secured on-premise, and only a small percentage of employees had mobile phones. Those mobile phones typically had a more limited application technology installed on them, and those apps were provisioned by services providers. With the onset of BYOD and cloud deployments of device management solutions, these service-provider solutions are shifting to home-grown solutions. And beyond just servicing employees, enterprises must now look at providing access to assets from a spectrum of internal and external users: from authenticated employees to unauthenticated users such as customers and partners.
The mobile security policy is the foundation of mobile operations management. Companies need to: enforce these policies, use a mobile platform is required that provides a common set of tools for managing security for all mobile apps and all devices in the business ecosystem. These tools include end-to-end data encryption, device-level user authentication, single-sign-on certificate management, and a seamless onboarding experience both for the administrator and the end-user.
The SAP Mobile Platform introduces a multilayer approach to corporate security, designed for mobility. This approach ensures that:
- Internal and external device users can securely connect to enterprise information systems.
- Every network link that transfers corporate information and every location that stores enterprise data guarantees confidentiality.
SMP security features cover Component, Communication and Authentication & Access aspects, which apply to different components of the runtime landscape:
- Mobile application and local data
- Server and runtime data services
- Cache and messaging DB
- Enterprise Information Servers
Further, SMP Common Security Infrastructure (CSI) provides an extensible model for integrating with existing security infrastructure (e.g., LDAP, Microsoft AD, SiteMinder). For additional information about developing a custom authentication or authorization provider, see Security API in Developer Guide: Unwired Server Runtime.
Available Resources
Getting started
- Sybase Unwired Platform Security White Paper
- Product documentation covers Security in the chapter Security SMP 2.2 SP02 (check for different versions as applicable)
- Product documentation also provides Checklists and Worksheets (check for different versions as applicable):
- How To Guide: Step by step Guide to Configure Sybase Relay Server
- How To Guide: How-To set-up SUP with SiteMinder
Single Sign On
A number o publications deal with SSO in particular:
- Single Sign-On for Mobile Apps is a blog by @Martin Grasshoff and a great starting point into this topic.
- How To Guide: Configure SSO with X.509 for SUP 2.0 & 2.1
- How To Guide: SSO with SAP token for MBO-based Mobile Applications
- More help can be found on the SCN Space for SAP NetWeaver Single Sign- On
Related Reading
- Enabling Authentication and RBAC for User Log-ins
- How To Guide: Integration of LDAP with Sybase Control Center
- Product Documentation: Troubleshooting Security, Logins and Authentication
- A number of different SAP Notes on SUP & Security include tips and tricks as well.
Related Mobile Security Solutions
Extended SAP Mobile Platform support topics:
- Afaria - a new dimension in Mobile Security
- Afaria in the Cloud and Mocana
- Securing the Mobile App Tsunami: SAP Partners with Mocana
- SAP Mobile App Documents
- iOS7 and Mobile Security
- iOS 7, App Security & Star-Bellied Sneeches - a blog by Kurt Stammberger, Mocana
People to follow
@Ali Chalhoub, @Martin Grasshoff, , , @Marvin Hoffmann, @Sergey Volodin, @Wayne Smith, @ Kevin Bates , @Dirk Olderdissen