Next-Gen Authentication Enhancing Enterprise App Usability




The mobile threat landscape is widening quicker than enterprises can handle, and the need for improved security methods has reached critical mass.

Next Generation Authentication (NGA) methods are beginning to roll into the enterprise, bringing biometrics, single sign-on and OAuth techniques to keep mobile devices – and their stored data – more secure, but often times interrupt usability.

This week, mobile application management company Apperian announced its rollout of NGA methods for enterprise apps without compromising user experience. Apperian’s app deployment system enables administrators to launch specific enterprise apps across the network on mobile devices without users having to enroll in a mobile device management system. Now that platform is utilizing stronger security methods, such as:

  • Single Sign-On (SSO) with Touch ID for iOS devices, which will enable users to enter their device with a single touch ID rather than manually entering a password.
  • OAuth capabilities enable existing users to leverage already-created identity infrastructure without having to build secret identity attributes within the platform.
  • Enhanced password protocols are also supported with additional complexity requirements that provide administrators with controls around expiration time, password history, and enforcement of unique passwords.

Arxan acquired Apperian earlier this year in what has already proven to be a strong marriage. Arxan’s software defends applications against attacks, detects attempted attacks at run-time, and deters attacks. The acquisition gave Arxan customers access to Apperian’s SaaS software and enterprise deployments for their mobile apps.

In a recently-fielded Enterprise Mobility Exchange survey about the state of enterprise IT in 2017, 34% of IT executives who responded said Mobile Security was among the top three priorities this year. Eighty-eight percent of respondents said enterprise mobility was either a top priority or growing priority for them this year as well, while 59% said mobile security specifically was a high priority for the IT department.

“The skew toward security at the expense of productivity is not surprising given the current threat landscape,” said ESG Analyst Mark Bowker. “With employees storing more confidential data on endpoint devices such as desktop PCs, laptop PCs, and mobile devices, organizations are increasingly at risk of failing to comply with any of a growing number of regulatory requirements that govern data security and privacy. And in an increasingly mobile world, this is particularly true in the case of devices such as laptop PCs, smartphones, and tablets.”

A recent ESG survey showed 44% of IT executives said securing confidential data on endpoint devices was their organization’s top challenge, with 39% saying enforcing end-user compliance with regulatory requirements was the second biggest challenge.

As previously reported by Enterprise Mobility Exchange, 2016 was a record year for hacks, as 85% of mobile infections came through smartphone devices, leading laptops, tablets, and wearables.