Samsung Knox Platform for Enterprise (KPE)
Transcript of Samsung Knox Platform for Enterprise (KPE)
1
JULY 2020
Samsung Electronics
Samsung KnoxPlatform for Enterprise(KPE)
2
Samsung KnoxMainly consists of the Knox security platform and a series of Knox cloud solutions for IT
Knox Cloud Solutions for IT
• Streamlined device provisioning,
enrollment, and configuration
• Comprehensive device, app,
and OS version management
Knox Security Platform
• Defense-grade security
built into Samsung devices
2
3
Multi-layered Security Built to ProtectKnox integrates hardware and software that work together to give you the highest level of data protection
Manufacturing from the chip
• Samsung manufactures everything
from the chip up
• Security from design to manufacturing
and quality assurance
Data Isolation
• Sensitive data can be completely
isolated in a secure place
Data Encryption
• Data stored and transmitted in
an encrypted state
Run-time Protection
• Samsung devices are always
running in a safe state
4
DISA (USA)
NCSC (UK)
AIVD (Netherlands)
Traficom (Finland)
ISCCC (China)
STRK (Kazakhstan)
ANSSI (France)
CCN (Spain)
Common Criteria
FIPS 140-2
(USA, Canada)
Market Proven Since 2013Knox has been widely adopted in the market and trusted by experts and government bodies
IDC
2018
” Knox has elevated the perception of Android
as a secure, stable and enterprise-capable mobile OS ”
* IDC Market Perspective, July, 2018
Gartner 2019
Knox platform 3.2 received 27 of 30 Strong Ratings
* Gartner, Inc. Mobile OSs and Device Security : A Comparison of Platforms,
Patrick Hevesi, May 6, 2019 4
Secured 1B+Devices
Managed 70M+Devices
Supported 15K+Businesses
5
End-to-End Device SecurityHardware-based trusted environment ensuring device integrity, from manufacturing to booting to runtime
• Device unique hardware keys
• Accessible via an isolated area
of chipset only
• Prevents unauthorized kernel access or code
modification
• Sensitive data is kept encrypted even after
device is powered on
• Verifies integrity of booting components at every
boot-up
• Prevents from loading an older firmware version
5
Manufacturing time Run timeBooting time
Secured by KnoxAndroid Enterprise
Hardware Root of Trust Maintain TrustBuild Trust
6
Advanced and Ever-evolving Security Knox integrates hardware and software that work together to give you the highest level of data protection
6
Extended Capabilities on top of AE
• Adding enhanced and unique value-added security
capabilities
• Real-time Kernel Protection (RKP),
Sensitive Data Protection (SDP), and more
Multi-layered Defense Grade Security
• Chain of defense mechanisms, encompassing HW, kernel, OS,
and applications
• Protection from malware and threats
* Android
Enterprise
7
Wide Range of IT PoliciesProviding a wide range of IT policies with its unique management capabilities to meet diverse compliance needs
Data-in-Transit Protection
Advanced VPN
Firewall
UX Customization
App Mgmt.
Device Feature Mgmt.
Authentication / Lock
User / Account
Data-at-Rest Protection
Dual DAR
Device Inventory
Audit Log
Network Platform Analytics
Remote Control
USB
Wi-Fi
NFC
Bluetooth
Tethering
Call & Messaging Mgmt.
Certificate Mgmt.
Universal Credential Mgmt.
KnoxManagement
Features
8
Knox Platform for EnterpriseDesigned to enable IT admins to safeguard corporate data at both the hardware and software level,
removing the risk of being compromised on Samsung devices
Market-proven, trusted security to forward your business
Available with
Key Differentiation
• Non-bypassable VPN
• Dual encryption of
Data at Rest
• Domain / internet filtering
ComprehensiveDevice Management
• App mgmt. without
Google Play
• DeX management
• Deep customization
Versatile Credential& Certificate
• Universal Credential
Management
• Certificate management
GranularDevice Monitoring
• Network Platform Analytics
• Remote control
• Device inventory
Robust Data Protection
…
…
…
…
9
Abellio Railway
9
Public Logistics Manufacturing Transportation
• Storing classified data in a
secure container
• Managing devices and advanced
security policies via BB UEM
• Managing centralized apps
(remote installation & updates)
• Monitoring and tracking devices
• Restricting excessive device usage
• Updating selective OS version to all
employee devices
• Locking down stolen or lost devices
Micab
• Tracking device location
• Preventing from installing distracting apps,
going offline, and removing SIM
Advanced Device Security and On-going Management
KAZPOSTWaterloo Regional Police Abellio Railway
10
Visit SamsungKnox.com to :
1 Learnmore 2 Try
for free 3 Contactsales
10
1111
Thank youStay connected, protected and productive