Very interesting posts. I agree with both of you that this should be a native function of the Android OS, but as Shane points out, it isn't precluded by the OS. I'm too new still to Android and infosec to know, but it seems to me that something akin to Sophos' SafeGuard Easy, a full-disk encryption tool, could be implemented for Android.
Does Touchdown encrypt contact and calendar info? I looked at the site, but I couldn't find an answer. Looking for more info, I found these pages which show that others are also hoping/asking for this: http://krypted.com/ubuntu/looking-into-google-androids-internals/ I also found this page which seems to say that FDE is of little enough value as to be dying, with which I adamantly disagree: http://www.infoworld.com/d/security-central/full-disk-encryption-isnt-quite-dead-359 This article points out that FDE and folder/file encryption systems have difference costs in terms of cycles, and that while FDE ensures that users can't mistakenly leave something unencrypted that should be, the files are only encrypted on the disk, and not during transport via e-mail, FTP, etc. http://www.csoonline.com/article/505556/full-disk-encryption-dos-and-don-ts I guess I don't get why there isn't a solution for both conditions. Some system in which resident files/folders are encrypted by the FDE, but when a file/folder is being transmitted, it is both unencrypted by the FDE, as happens now, but then copied to a buffer or scratch disk and automatically encrypted and signed by the FES before being attached. The copy on the scratch disk would of course then be securely wiped. I suspect that there may not even be a need to create that copy, but I really am too new to all of this. Any thoughts/explanations? Thx, D On Mon, Aug 2, 2010 at 9:22 AM, Shane <[email protected]> wrote: > There are 2 applications I have found so far. 1. Good Mobile > Messaging Server http://www.good.com/enterprise/mobile-messaging > 2.Touchdown, http://www.nitrodesk.com/dk_touchdownFeatures.aspx > > That being said, I would like to see this become native on android OS. > If anyone has any other suggestions please share. > > Shane > > On Jul 9, 2:10 pm, steve <[email protected]> wrote: >> I am a Droid user and potential developer. The Fortune(tm) 10 company >> I work for is primarily a BB and now becoming an iPOD shop, with no >> plans to use anything Android because it currently does not measure up >> to security requirements. The latest corporate computer standard >> calls for all mobile devices to support ROM level Data-at-Rest (DAR) >> security, as well as remote wipe. We spend millions upgrading all our >> laptops. With literally tens of thousands of handheld mobile devices >> in just my company, and millios more out there, there is a huge >> opportunity for Android. How long will it take for Android to support >> this important enterprise need? >> >> Steve > > -- > You received this message because you are subscribed to the Google Groups > "Android Security Discussions" group. > To post to this group, send email to > [email protected]. > To unsubscribe from this group, send email to > [email protected]. > For more options, visit this group at > http://groups.google.com/group/android-security-discuss?hl=en. > > -- You received this message because you are subscribed to the Google Groups "Android Security Discussions" group. To post to this group, send email to [email protected]. To unsubscribe from this group, send email to [email protected]. For more options, visit this group at http://groups.google.com/group/android-security-discuss?hl=en.
