New Security Concerns with HTML5 - Guest Security Expert

We are fortunate to have a guest mobility and security expert, Joe Bulman, share his HTML5 insights with us today in this article.  Thanks Joe!

A recent survey (State of BYOD) reported, “Enterprises are widely embracing Mobile Device programs, including the most highly regulated and security conscious industries.  Additionally, there is no doubt that the variety of mobile device selections have grown significantly. For these reasons, businesses must support a best-of-breed security device approach rather than predicting and attempting to police specific technologies. HTML5 relates to this growing trend of mobile devices within an organization through the provisioning of applications to these devices.

HTML5 is more than a web markup language, it is a suite of technologies that improves the usability of web applications. While HTML5 entails the usual updates to HTML such as tags, styles and field types, many additional features are incorporated like multi-threading, local databases and a brand-new protocol called WebSockets.

The reason for a new protocol is from the inadequacies of HTTP for building today’s web applications. HTTP is big and slow; too big when scaling infrastructure and too slow for pages with dynamic content. While many existing web apps work fine today, they are using third party technologies such as Adobe Flash to supplement HTTP. With online and mobility business models at risk, a kinder, gentler technology (read: non-proprietary) is required. That’s where HTML5 hits the mark. Steve Jobs stated, “The world is moving to HTML5.” Apple iOS, Google Android, RIM Playbook and Blackberry OS are all equipped with HTML5 support.

HTML5 on the device will power a range of online business applications including messaging, collaboration, intelligence, data and mobility. According to a CISCO study (Entering the Zetabyte Era, 2011-06-01), global business Internet traffic alone will grow by 19 percent from 2010 to 2015; however, mobile business traffic will increase by 79 percent compounded.  The “connected device” is quickly becoming the platform of choice, delivering applications rich with HTML5 content. Unfortunately, this content explosion will come with security consequences. How do you protect a myriad of devices using a plethora of content over a range of protocols?

Traditionally, locks are placed on the doors to our businesses. That was once sufficient for keeping most bad guys out. With the arrival of the Internet came a new type of ubiquitous intruder known as the hacker. Firewalls, Intrusion Detection/Prevent and Web gateways arrived to the organization’s defense. These solutions provided adequate protection for the limited content flowing through the networks. With today’s richer HTML5 content, new protocols such as WebSocket and disparate devices, businesses must do more to protect themselves. So where do devices, content and protocols meet? At the network!

A winning, yet-secure mobile and HTML5 strategy must center on the secure delivery of ‘clean’ content flowing in and out of the organization at its most accessible spot, the network. Fortunately, a new breed of security technology has arrived to tackle such content, Deep Content Inspection (DCI). Applying DCI at the network layer works much the same as anti-malware works on the desktop. Content is scanned thoroughly for malware, viruses, spam and data leakages – and if deemed clean, it can continue on to or from the device. If it is not clean, the content will be prevented from proliferating. Not all DCI implementations are equal as full visibility of all content is a requirement. Organizations will need to choose a DCI vendor who fully supports HTML5, including its powerful, yet stealthy WebSocket protocol.

You may contact the author with any questions.  His contact details follow:

Joe Bulman
Senior Systems Architect, Wedge Networks
403.830.8407
Joe.bulman@wedgenetworks.com

For more information on HTML5 protection, visit http://www.wedgenetworks.com/component/content/article/229.html

*************************************************************

Kevin Benedict, Independent Mobile Industry Analyst, Consultant and SAP Mentor Volunteer

Visit MobileEnterpriseStrategies.com

Follow me on Twitter @krbenedict

Join the SAP Enterprise Mobility and Sybase Unwired Platform Groups

Read The Mobility News Weekly

Read The M2M News Monthly

Full Disclosure: I am an independent mobility analyst, consultant and blogger. I work with and have worked with many of the companies mentioned in my articles.

Mobility News Weekly - Week of December 19, 2011

The Mobility News Weekly is an online newsletter made up of the most interesting news and articles related to enterprise mobility that I run across each week.  I am specifically targeting information that reflects market data and trends.

Also read Field Mobility News Weekly
Also read M2M News Weekly
Also read Mobile Commerce News Weekly
Also read Mobile Marketing News Weekly
Also read Mobile Health News Weekly
Also read Mobility Charts Weekly

Syclo has announced that its Agentry Mobile Platform, SMART Work Manager and SMART Service Manager have been named as winners in the tenth annual Mobile Star Awards program.  Read Original Content

Korean consumer electronics giant Samsung has emerged as the most popular smartphone maker in the UK during 2011.  Read Original Content

The smartphone market in China seems to be ever expanding, and adding to the sea of handsets is the recently launched Dell Streak Pro. This mobile device has been built as a follow up to the Dell Streak 10 tablet that was released earlier this year in China.  Read Original Content

ClickSoftware is an SAP mobility partner and the leading provider of automated workforce management and optimization solutions for every size of service business.  This newsletter is sponsored in part by ClickSoftware - http://www.clicksoftware.com/.

Samsung is continuing to dominate the overall Australia and New Zealand mobile phone market, with the South Korean giant pushing ahead of Apple for a third consecutive quarter, according to International Data Corporation.  Read Original Content

Mobile Health News Weekly - Week of December 19, 2011

The Mobile Health News Weekly is an online newsletter made up of the most interesting news and articles related to medical mobility that I run across each week.  I am specifically targeting information that reflects market data and trends.

Also read Field Mobility News Weekly
Also read M2M News Weekly
Also read Mobile Commerce News Weekly
Also read Mobile Marketing News Weekly
Also read Mobility News Weekly
Also read Mobility Charts Weekly

The Alaska State Medical Association is using smartphone apps to streamline healthcare throughout Alaska by allowing physicians and hospitals to share patient information, including images, through mobile devices. Read Original Content

American Medical ID has rolled out a commerce-enabled mobile site to let medical patients buy identification tags via their handsets. Read Original Content

This past week insurance company Aetna announced that it has purchased iTriage, the popular mobile health app that allows people to schedule doctor appointments, check symptoms and conduct medical shopping through smartphones. Read Original Content

Webalo technology eliminates the need for traditional mobile application development tools and custom programming to provide in hours, instead of weeks or months, mobile access to the specific enterprise data and functions that smartphone and tablet users rely on to do their jobs.  This newsletter is sponsored in part by Webalo, www.webalo.com.

A new smart phone application, built from the ground up by El Camino Hospital, aims to help locals make informed medical decisions for themselves and their families.
The free app, Family Medical Officer, allows users to access personal and family health records, find doctors by location, and check emergency room wait times at both El Camino campuses. Read Original Content

Mobile Marketing News Weekly - Week of December 19, 2011

The Mobile Marketing News Weekly is an online newsletter that is made up of the most interesting news, articles and links related to mobile marketing that I run across each week.  I am specifically targeting market size and market trend information.

Also read Field Mobility News Weekly
Also read M2M News Weekly
Also read Mobile Commerce News Weekly
Also read Mobile Medical News Weekly
Also read Mobility News Weekly
Also read Mobility Charts Weekly

According to ABI Research, the location based services market will likely not see success in the region of Western Europe. However, globally the LBS market is expected to grow 15 percent yearly through 2016. Read Original Content

Ace Hardware is making its first foray into advertising on Apple’s iPad via a new campaign that is featured on The Weather Channel’s iPad application. Read Original Content

Department store chain Saks Fifth Avenue is using its holiday windows to not only draw locals and tourists to its New York flagship in Midtown Manhattan, but to drive mobile-commerce sales as well. The retailer has included a customized QR code in its holiday window display that allows consumers to watch a video or access the brand’s mobile store. Read Original Content

Pyxis Mobile provides an agile, powerful, and secure mobile enterprise application platform.  It enables rapid cross-platform application development, unlimited data integration, enterprise-grade security, and the unique ability to change and update applications in real time.  This newsletter is sponsored in part by Pyxis Mobile, http://pyxismobile.com/

Starbucks China is using mobile advertising to encourage users to check-in on the social network Jiepang as part of a holiday-themed promotion. Chinese users who check-in at locations in China can receive a free increase in their drink size. Read Original Content

Mobility Charts Weekly - Week of December 19, 2011

The Mobility Charts Weekly is a weekly publication of charts depicting the current and future status of the enterprise mobility market.  I am specifically targeting information that reflects market data and trends.

According to a Prosper Mobile Insights survey, 23.5 percent of smartphone and tablet owners say their device has been an integral part of their holiday shopping experience so far and they could not shop without it. Read Original Content

The cellular M2M embedded module market experienced a more difficult than expected year in 2010. Although total unit volumes continued to rise, reaching nearly 34 million units shipped in 2010, total industry revenue fell from roughly $996 million in 2009 to about $841 million in 2010, reversing the upward momentum in revenue seen in 2009 as the market rebounded from its 2008 lows. Read Original Content

The market for EPC RFID hardware exceeded $354 Million in 2010, an increase of more than 140 percent over 2009.  VDC anticipates that the market will continue to experience rapid growth in 2011, with global revenues growing more than 104 percent. Read Original Content


*************************************************************

Kevin Benedict, Independent Mobile Industry Analyst, Consultant and SAP Mentor Volunteer

Visit MobileEnterpriseStrategies.com

Follow me on Twitter @krbenedict

Join the SAP Enterprise Mobility and Sybase Unwired Platform Groups

Click Here!

Read The Mobility News Weekly

Read The M2M News Monthly

Full Disclosure: I am an independent mobility analyst, consultant and blogger. I work with and have worked with many of the companies mentioned in my articles.