On January 26, 2015, the Wall Street Journal reported that Google is dropping support for the default browser found in Android 4.3 or earlier, a move that stunned analysts. This means the company will no longer patch security holes in the Web browser included in some older versions of its Android operating software, leaving over 60 percent of its users at risk.
For the roughly 20 percent of companies with employees that use the vulnerable operating systems[1] to conduct work, this is especially concerning. The decision will likely draw the attention of criminals and lead to a fresh wave of exploits targeting the unsupported devices.
To address the problem, at-risk companies will ultimately need to update employee devices to newer versions of Android. In the mean time, however, to protect employees and their data from prying eyes, the article recommends companies should encourage the use of alternative browsers, essentially relying on the employee to fix the problem—a passive and shaky approach at best.
A better idea is to tackle the problem from a mobile application management (MAM) perspective that focuses on controlling applications and the data those apps access or store, rather than the device itself. The technology allows IT to oversee the lifecyle of securing, distributing, and retiring apps of all kinds—including web apps—across the mobile device. By applying application-level policies to authenticate users and secure data, for example, IT can protect apps and data even in the face of a significant vulnerability such as Android’s.
Leading MAM solutions offer a second powerful layer of security as well, in the form of application-wrapping. App-wrapping applies a management layer to a mobile app without requiring changes to the underlying code. This allows an administrator to set specific policy elements for corporate apps and data, such as preventing an app from storing data on a device or requiring users to re-authenticate periodically in order to keep using the app.
Symantec™ Secure Web is one example of a wrapped app. A secure web browser that provides safe access to internal web-based applications and content, Symantec Secure Web protects companies from potential web vulnerabilities in older Android devices by granting employees access to internal web-based resources and apps. To protect data in transit, a secure app proxy serves as a virtual network gateway for incoming traffic. Administrators can apply data control policies, such as requiring internal URLs be opened with the Secure Web app, effectively disarming any hackers with their eye on your employees’ devices.
Additional third-party wrapped applications are available to protect and enable the enterprise. The Symantec Sealed Program allows app developers to add security and management controls to their applications without making source code changes. Developers partner with Symantec to provide enterprise-ready apps that are invulnerable to hackers seeking access, even in unsupported Android devices.
Symantec’s approach to mobile management empowers companies to embrace Android in the Enterprise, without having to worry about whether Google or anyone else is patching security vulnerabilities.