Warning messages in the MDM: Preventing data security violations on business devices
The use of mobile devices in companies requires special data protection measures to prevent them from becoming a potential gateway for attacks on the company network. Clearly defined policies that regulate authorisations and restrictions are essential, as is the use of warning messages on mobile devices, which can make a decisive contribution to security. In our article, you will learn how to set up warning messages for violations in MobiVisor MDM and how they contribute to the overall security of your devices.
Warning messages and their purpose in the MDM
There are a number of security-threatening actions that must not be carried out on a mobile service device. These include, for example:
- Unauthorized exchange or removal of the SIM-card
- Trying to root a device Installing an app that is blocklisted
- Using a mobile device with an outdated or no longer supported operating system, which can pose a big security threat
Such violations can pose significant security risks. To ensure the security of the company network at all times, the administrator must be informed immediately of potential breaches. Mobile Device Management (MDM) systems such as MobiVisor enable the configuration and sending of corresponding warning messages to the administrator as well as the device user.
How can you configure warning messages in MobiVisor MDM?
To activate warning messages in MobiVisor MDM, violations must first be defined. These include all actions that violate the company’s data protection compliance. The administrator can define which violations are relevant in the MobiVisor interface, whereby the configuration options differ depending on the operating system. The device warning in the event of a breach is triggered differently depending on the operating system. For Android devices, device warnings can be triggered for the following violations:
- Rooting of the device
- Exchange of the SIM card
- Usage of a mock GPS
- Installation of a blocklisted app
- Deactivation of device admin
- Exceeding mobile data, SMS or call limits
- Use of a non-compatible operating system version
The functionality is currently limited for Apple devices: Device warnings can only be sent when a non-compatible operating system version is used, as Apple does not release any other interfaces for defining additional violations.
What are the consequences if violations are recognised?
If the MDM detects a breach of the previously defined rules, this is reported to the IT administrator. The administrator can specify how the notification should be sent during configuration. Various options are available for Android devices: For example, the admin can receive an email notification and/or have the violation displayed directly on the device page in MobiVisor. It is also possible to display a warning message on the affected device itself to inform the user of the violation.
Depending on the company’s compliance requirements, the admin can also specify that devices on which a breach is detected are automatically blocked. Unblocking via the MDM system is possible at any time, but should only take place after the cause of the breach has been clarified. Alternatively, a policy can be applied in response to a breach, such as a kiosk mode that restricts the device but allows basic functions to remain available.
With Apple devices, the options in the event of a violation are more limited: the administrator can also receive an email notification and display the violation on the device page, but it is not possible to lock the device. Instead, a policy can be applied as a consequence that prevents the action in question from being carried out. In principle, offences can be defined for all set-up modes of mobile devices, for example device owner or BYOD. The different set-up modes allow access to different information, such as the collection of SIM card data. Infringements can only be recognised and triggered if the corresponding information has been released.
Are device warning messages for violations a must for device safety?
In principle, mobile devices should be secured by the MDM (Mobile Device Management) guidelines in such a way that security-critical actions on the part of users are prevented from the outset. Nevertheless, MDM guidelines cannot prevent devices from being lost or stolen. In such cases, a thief could, for example, attempt to root the device, which would trigger a device warning and initiate the locking of the device. The level of security required for mobile devices ultimately depends on the individual use case of the organisation. For organisations that only want or need to restrict their devices minimally or not at all, breaches provide a basic security guarantee. At the same time, device alerts are a valuable addition for companies with the highest security requirements in order to recognise and address potential risks at an early stage. Device alerts thus help to ensure compliance with data protection regulations and effectively prevent security incidents.
