Providing Internet Access via WSO2 Enterprise Mobility Manager
1. Director , Mobile Architecture
Shanmugarajah
Providing Internet Access via WSO2 Enterprise
Mobility Manager - A WSO2 Case Study
31 July 2014
2. About the Presenter
Shan specializes in mobile technology with over 10 years experience in that field.
!
He has a strong background in telecommunication software development and is
a hardcore coder in Android and iOS platforms.
!
Prior to joining WSO2Mobile, he was working as the CTO/Director of Microimage
Mobile Media for almost 15 years.
!
He played a key role in engineering products where Microimage has won many
local & international awards which includes winning the Inaugural GSMA Asia
Mobile Innovation Award, Commendation from GSMA at the Barcelona World
Awards in 2007, Asia Pacific ICT Awards (APICTA)
!
Hobbyist (Arduino/RPi/ Wearable Devices)
!
Platforms (Windows 8 Phone, Tizen)
!
3. About
WSO2
๏ Global enterprise, founded in 2005 by
acknowledged leaders in XML, web services
technologies, standards and open source
๏ Provides only open source platform-as-a-
service for private, public and hybrid cloud
deployments
๏ All WSO2 products are 100% open source and
released under the Apache License Version 2.0.
๏ Is an Active Member of OASIS, Cloud Security
Alliance, OSGi Alliance, AMQP Working Group,
OpenID Foundation and W3C.
๏ Driven by Innovation
๏ Launched first open source API
Management solution in 2012
๏ Launched App Factory in 2Q 2013
๏ Launched Enterprise Store and first
open source Mobile solution in 4Q 2013
10. Wi-Fi
• local area wireless technology
• connect to the internet using 2.4 GHz UHF and 5 GHz SHF
radio waves
• personal computers, video-game consoles, smartphones,
some digital cameras, tablet computers and digital audio
players
• range of about 20 meters (66 feet) indoors
• multiple overlapping access points can cover more area
12. Wi-Fi Security
• less secured than wired connections
• no physical connection needed
13. Wi-Fi has adopted various encryption technologies.
• WEP (Wired Equivalent Privacy)
• WPA (Wi-Fi Protected Access)
• WPA-2
14. WPA/WPA2 PSK (Pre-Shared Key)
• Key is the password for the network
• Good for home network
• Not good for enterprise
• One password for everyone
• No way to track who is using the internet
• Can restrict using Mac-Address but not scalable
• Simple to implement
15. WPA2 Enterprise
• Does not use PSK
• Difficult to configure
• Appropriate for Organization
• Connects with a RADIUS server
16. RADIUS Remote Authentication Dial In User Service
• is a networking protocol
• provides centralized Authentication, Authorization, and Accounting (AAA)
management for users that connect and use a network service
• connects to LDAP , AD
17. WSO2 Scenario
• Was using WPA2-PSK
• One password shared
• Any device can connect (Laptops, Mobile Devices)
18. !
Adopted WPA2 - Enterprise
!
• RADIUS Server connected to LDAP
• Access only to Laptops
• Have to give Mac-Address
• Have to install certificates
19. WPA2-Enterprise
• Can detect the Mac-Address
• Identify the user
• Not the device (what app is installed, rooted, whether the data is secured) . This is ideal and
a must for any Mobile devices like phone , tablets.
20. WSO2 EMM Implementation
• Configuration issue like reading the mac-address
• installing certificates
• This is the ideal scenario for BYOD - Bring your own device)
22. WSO2 EMM Implementation
• Framed a policy
• to allow what models of devices were allowed /version
• check whether its rooted
• enforce policy for data security (Password policy)