SAP MOBILE PLATFORM MOBILITE et SECURITE

SAP MOBILE PLATFORM MOBILITE et SECURITE Samuel Gaudard, Managed Mobility Lead, Capgemini Jérôme Conin, Global IT Mobile Service Owner, SAP Nicolas Taffignon, Solution Sales Executive, SAP [name] [title] 2011 SAP AG. All rights reserved. 1

SAP MOBILE PLATFORM SAP runs SAP Jérôme Conin, Global IT Mobile Service Owner, SAP [name] [title] 2011 SAP AG. All rights reserved. 2

Disclaimer This presentation outlines our general product direction and should not be relied on in making a purchase decision. This presentation is not subject to your license agreement or any other agreement with SAP. SAP has no obligation to pursue any course of business outlined in this presentation or to develop or release any functionality mentioned in this presentation. This presentation and SAP's strategy and possible future developments are subject to change and may be changed by SAP at any time for any reason without notice. This document is provided without a warranty of any kind, either express or implied, including but not limited to, the implied warranties of merchantability, fitness for a particular purpose, or non-infringement. SAP assumes no responsibility for errors or omissions in this document, except if such damages were caused by SAP intentionally or grossly negligent. 2011 SAP AG. All rights reserved. 3

2012 2011 2010 First step: Blackberry-only to introduction of Apple Mobile devices Early 2010: RIM Blackberry only mobile platform for SAP internally 22.000 devices at the time (8.216 as of today) default platform with focus on basic email/pim functionality RIM Playbook has been released on May 2012 to complete offering Q2 2010: introduction of iphone/ipad Limited Availability Following slides... Motivation Challenges & Response Offering what s included 2011 SAP AG. All rights reserved. 4

2012 2011 2010 Introduction of iphone/ipad Motivation & Key Drivers Mobile Application Platform Two aspects important for us to enable the development organization to extend the apps offering and to foster device-agnostic App development to use own business apps internally at SAP Consumerization of IT demand for IT equipment is no longer only driven/managed by IT organization but more and more user demand becomes an important factor (executives, workplace attractiveness, ) consumer and business markets are merging consumer devices like iphone or Android more and more support enterprise features like Exchange ActiveSync or VPN connectivity while business devices like Blackberry more and more add consumer features like multimedia, touch UI,... or even devices with consumer ( prosumer ) focus like the Playbook 2011 SAP AG. All rights reserved. 5

2012 2011 2010 Introduction of iphone/ipad Challenges & Responses (1) Challenge: Security As there is no integrated security concept, a balance between business requirements and IT Security requirements need to be negotiated Response: Definition of minimum security requirements / enforcement...for mobile devices to access/store corporate data security policies mandatory password (length, lock-out period, device wipe after unsuccessful attempts) device (hardware) encryption for data at rest (remote) administration remote wipe/lock possibility, basic device/os version collection...for corporate services / apps used on mobile devices encryption of data in transit, e.g. SSL for connection or better package encryption user authentication with X.509 certificates (default SAP Single Sign-On solution) Enforcement initially, policy enforcement and remote administration for ios devices has been handled using Microsoft Exchange ActiveSync (EAS) connection 2011 SAP AG. All rights reserved. 6

2012 2011 2010 Introduction of iphone/ipad Challenges & Responses (2) Challenge: Support With expanding the IT offering, additional support effort needs to be handled. Response: Focus on Community Support model We ve started community support during the project and continued with this approach due to positive response Wiki for more static content but allow comments + Forum for interaction / user support after volume grows and depending on the target group, existing support channels need to be covered as well but: most of tickets opened can be closed w/ reference to Wiki Apple Champion network in End-User support to spread knowledge into IT organization and enable points of contacts with regular information about progress We re following an open approach where users e.g. can install itunes, use device for private Apps (general allowance for Apps) but bundled with user responsibility to self-configure the device (by default) and self-support as possible keep the device updated with current OS (triggered with security notification) 2011 SAP AG. All rights reserved. 7

2012 2011 2010 Introduction of iphone/ipad Challenges & Responses (3) Challenge: Cost Impact Essential is to balance the increased (device/communication) costs with the business benefits, easier access to information, increased productivity, Response: Negotiate flatrate and release international use guidelines The use of mobile devices can generate a lot of traffic, not only for basic email/pim but especially browsing and use of Apps which is to some extent desired outcome of equip the workforce with mobile devices for national use, a flatrate is essential to keep costs manageable for international use, users should leverage Wi-Fi (hotspot, office) as much as possible and reduce 3G traffic to a minimum Another point ipads/tablets are clearly on top, so it does not replace a laptop. But it gives users a different seamless access to work related tasks & information the use of enterprise Apps is imperative to leverage this! 2011 SAP AG. All rights reserved. 8

2013 2012 2011 2010 Introduction of iphone/ipad Offering what s included Exchange ActiveSync (Email, Calendar, Notes, Tasks, Contacts) Exchange 2010 backend, access via reverse proxy & CAS (loadbalanced) Secured with SSL, login with domain credentials VPN Central Cisco IPsec gateway up to 5000 concurrent users, addtl dev/demo GW in US Generic access to SAP corporate network and internal scenarios (dev/demo/prod) Login with SecurID authentication Single Sign-On with client certificates has been adapted on mobile device Client certificates are SAPs preferred solution for backend system login User can transfer client certificates to the iphone or ipad with a self-service and then seamlessly access backend systems, i.e. SAP Corporate Portal 2011 SAP AG. All rights reserved. 9

2013 2012 2011 2010 Introduction of iphone/ipad Offering what s included RSA SecurID Soft Token Token generator to access internal data from outside the SAP network PGP Viewer Allows users to read encrypted emails Citrix / Windows Terminal Server External access (with SecurID authentication), also for personal devices Offers windows desktop, use of dedicated published apps planned (e.g. SAPGUI) Microsoft Lync Mobile SAP s Instant Messaging service, including voice & video over wireless, and conferencing. ipass Connect Allows users to connect to Internet from any Wi-Fi hostpot 2011 SAP AG. All rights reserved. 10

2013 2012 2011 2010 Mobile Device Mgmt. for Mobile devices Project Brief Mobile Devices @ SAP in total: 80.083 Managed Devices (Afaria + BES) in total: 78.017 Afaria + BES BYOD Apple ios 54.298 6.969 Samsung Android 7.050 1.077 BlackBerry 8.220 403 2011 SAP AG. All rights reserved. 11

2011 SAP AG. All rights reserved. 12

Mobile Device Management with Afaria at SAP As consumer focused mobile platforms like Apple ios don t offer integrated management, an enterprise mobile device management solution is required to fill the gap. SAP uses Afaria to: Setup: one-stop enrollment automatically installs emails and VPN configurations, security policies, default root certificates, and internal links. Secure: enforce company security policies (e.g. password encryption ), remote actions (e.g. lock, wipe, remove password ), jailbreak detection, identify outdated OS versions Manage: update settings and certificates without users impact, and optimize support with troubleshooting and hardware inventory Deliver apps: offer company internal apps and links to official Apps in App Store 2011 SAP AG. All rights reserved. 13

Bring Your Own Device Total number of managed private devices: 4.371 Already implemented in : USA, Germany (TouchDown), India, China, Australia, Canada, Japan, Singapore, Brazil, Korea, South Africa, Argentina, New Zealand, Philippines, Indonesia, Venezuela, Argentina, Malaysia, Thailand, Mexico, Africa Region, Chile, Colombia, Hong Kong, Puerto Rico, Taiwan, Turkey. 2011 SAP AG. All rights reserved. 14

2013 2012 2011 2010 Overview Mobile Platforms & Outlook Overview & Outlook: Mobile Platforms @ SAP Platforms on the radar screen Blackberry 10 devices Apple iphone & ipad Android phones & tablets Windows Mobile Phone 8.1 (mid-2014) Bring Your Own Device Rollout in remaining countries Container solutions. Evaluation ongoing 2011 SAP AG. All rights reserved. 15

SAP MOBILE PLATFORM SAP Mobile Secure Nicolas Taffignon, Solution Sales Executive, SAP [name] [title] 2011 SAP AG. All rights reserved. 16

Sécurité et Mobilité dans les journaux 2011 SAP AG. All rights reserved. 17

Tendances de fonds impactant la stratégie EMM BYOD / Corporate? Cloud Prérequis vis à vis des information privées 1100101 1011010 0100101 Quantité d informations embarquées Plus de PC mais un appareil mobile 2011 SAP AG. All rights reserved. 18

La réponse de SAP Mobile Secure 2.0 Data & Application Operating System Network & Connectivity Mobile Content Management Mobile Application Management Mobile Device Management Secure Mobile Gateway Network Access Control Application Wrapping Data Loss Prevention Mobile App Reputation Analysis Compliance Remediation Reporting In the SAP HANA Enterprise Cloud Complete Enterprise Integration 2011 SAP AG. All rights reserved. 19

SAP Mobile Secure SAP Afaria Sécuriser les appareils SAP Mobile App Protection by Mocana Sécuriser les Apps (et données) SAP Mobile Documents Sécuriser le contenu embarqué 2011 SAP AG. All rights reserved. 20

SAP Mobile Secure SAP Afaria Sécuriser les appareils SAP Mobile App Protection by Mocana Sécuriser les Apps (et données) SAP Mobile Documents Sécuriser le contenu embarqué 2011 SAP AG. All rights reserved. 21

SAP Mobile Secure SAP Afaria Sécuriser les appareils SAP Mobile App Protection by Mocana Sécuriser les Apps (et données) SAP Mobile Documents Sécuriser le contenu embarqué 2011 SAP AG. All rights reserved. 22

SAP Mobile Secure Architecture Distribution via MDM IT Admin Wrapping Service & Console d admin Executive 4 1 2 Employee 3 Active Directory Enterprise App Wrapped Apps Contractor Distribution via Enterprise App Store 5 Executive Android Phone Employee Android Tablet Contractor Apple iphone 2011 SAP AG. All rights reserved. 23

SAP Mobile Secure Périmètre Fonctionnel Feature / Function MDM MDM + Secure Email container MDM + Secure Email container + App Wrapping MDM + Secure Email container + App Wrapping + Mobile Content Device Security Device Encryption Passcode Control Certificate Management User Authentication Jailbreak & Root Detection Email Provisioning Email Encryption Device & Mobile App Provisioning & Revocation Network Access Control Containerized email App-level security policies Application Encryption Content Managment Content Asset Tracking & Version Control Content Revocation Content Encryption 2011 SAP AG. All rights reserved. 24

SAP is the recognized leader in mobile security 1 Largest Customer Deployments SAP a le plus important déploiement, 900,000 devices Plus de 10+ clients ayant déployés plus de 100,000 devices Android Leader Offre complète et compatible avec Samsung KNOX Partenaire avec Mocana dont la technologie est embarquée dans 70% des Android Recognized by Industry Analysts SAP, seul leader présents dans 2 Quadrants magique du Gartner pour la mobiblité IDC a nommé SAP comme le leader du Mobile Enterprise Management pour la 12ième année consécutive 2011 SAP AG. All rights reserved. 25

SAP RUNS SAP & SAP Apps Collaboratif, Analytique, EAM et beaucoup plus En Demo au SAP Forum Expert Corner

SAP MOBILE PLATFORM L OFFRE CAPGEMINI / SAP avec MOBILE SECURE Samuel Gaudard, Managed Mobility Lead, Capgemini [name] [title] 2011 SAP AG. All rights reserved. 27

Une offre complète et évolutive A partir de 1 par device par mois Enterprise Mobility Management: ENTERPRISE SUPPORT SAP AFARIA CLOUD EDITION GLOBAL CLOUD 2011 SAP AG. All rights reserved. 28

Une gamme complète de services d accompagnement Capgemini propose des services additonnels pour accompagner les entreprises dans le déploiement de solutions EMM Enterprise connectivity : connecter le LDAP, la messagerie au cloud AWS de façon sécurisée Starter kit : accompagner le lancement du projet de sécurisation de flotte : Stratégies de sécurité, mise en place des policies, politique d enrolment Formation et Support aux administrateurs au démarrage Administration déléguée / support avancé 2011 SAP AG. All rights reserved. 29

Démo de l outil 2011 SAP AG. All rights reserved. 30

Your opinion matters! Please use our Event App to give us some feedback on the session you have just attended, as well as on the event as a whole. Our free event app is available from the following stores: Please assess: -session contents -speaker -Event allgemein Give us your feedback and you may win 1 out of 10 official «brazuca» match-balls with an original signature by Ottmar Hitzfeld 2011 SAP AG. All rights reserved. 32

Quelques liens sur les sites SAP / SCN / SDN et les références Références et témoignagnes clients http://www.youtube.com/playlist?list=pl9b42e5b237de43e0 L innovation et la mobilité chez SAP http://www.sap.com/pc/tech/mobile.html http://scn.sap.com/community/mobile http://www.sap.com/pc/tech/mobile/software/industry-apps/direct-store-delivery/index.html Mobile @ SAPPHIRE 2014 http://scn.sap.com/community/mobile/blog/2014/04/30/experience-the-opportunities-that-mobile-technology-delivers-atsapphirenow-2014 Les 10 meilleures sessions pour l IT http://scn.sap.com/community/mobile/blog/2014/05/02/top-10-mobile-sessions-for-it-at-sapphirenow-asug-2014 Les 10 meilleures sessions pour les Business Leaders http://scn.sap.com/community/mobile/blog/2014/05/09/top-10-mobile-sessions-for-business-leaders-at-sapphirenow-asug-2014 SAPPHIRE Replays (Recherche par mots clefs) http://events.sap.com/sapphirenow/en/sessions.aspx?year=2014&bc=2%1%1 2011 SAP AG. All rights reserved. 33

Quelques rapports / benchmarks Pinterest http://www.pinterest.com/sapmobile/sap-mobile/ Mobile Academy http://www.sapmobileacademy.com ebook Security for a Mobile Workforce: Reduce Risk by Locking Down Apps, Devices, and Content : http://global.sap.com/community/ebook/2014_01_29112/enus/index.html ebook App Development in a Mobile World: A CIO Handbook : http://global.sap.com/campaigns/09_cross_mobile_world_cio_report/cio_handbook_final.pdf 2011 SAP AG. All rights reserved. 34

Quelques liens (Social Médias et Contenus) Twitter @SAPMobile Key hashtags: #mobile #mobility #Fiori #SAPMobileSecure #Afaria #mobileapps @SAP_IoT Facebook SAPMobile LinkedIn SAP Mobile YouTube http://www.youtube.com/user/sapenterprisemobile http://www.youtube.com/playlist?list=pl15e28b394c65db9 B (Mobile Platform) http://www.youtube.com/playlist?list=plc63f6ebbab33bb EF (Mobile Secure) http://www.youtube.com/playlist?list=plc6mbxohzyuyffkv mcw5m3rtotvoosd8l (Mobile Consumer) http://widgets.sprinklr.com/widgets/youtube-uploaderv3/?wid=4c146362-3cb8-4c10-8f45-da19ba0eca86(pour télécharger depuis des mobiles) Slideshare http://www.slideshare.net/sapmobile SAP Enterprise Mobility Management SAP Mobile Platform Developer Community 2011 SAP AG. All rights reserved. 35

Thank you Contact information: Nicolas Taffignon SAP (Switzerland) Inc. Solution Sales Executive, Mobility World Trade Center Avenue Gratta-Paille 2, CP 469 CH-1000 Lausanne 30 Grey Mobile: +41 79 251 03 71 nicolas.taffignon@sap.com

SAP MOBILISE LES PROCESSUS DE TOUTES LES DIFFERENTES POPULATIONS Field Workers Field service, Logistique, Usines, Commercial Fort potentiel pour innover (UX, Nouveaux usages) Apps complexes, guidant les utilisateurs / ROI importants EAM, REX, DSD, CRM, EMR et beaucoup d autres Knowledge Workers Tout employee ou manager Souscription, self service Faciliter l usage et augmenter l éfficacité Mobile BI, Fiori (Mobile), Analytics, Workflow, Collaboratif B2C/Business Partners Forte attente sur la facilité d utilisation Chiffre d affaire additionnel mais très profitable Nouveaux business modèles Multi canal (web, sms, mobile), couponing, boutique virtuelle, aide à la vente, et plus encore.