A minimum standard is to be defined which a Mobile Device Management - MDM system has to meet if it is to be used in a federal agency. The minimum standard is currently in the beta phase. Version 1.0.4 can already be used as a community draft be downloaded.
In recent years, smartphones, phablets and tablets have increasingly found their way into the business world. There is also an increased need in the federal administration for the use of mobile devices, which also includes the storage and processing of sensitive information. Due to the type and scope of the data generated, a wide range of threats and risks can arise. But the complexity - caused by a large number of installed applications and numerous ecosystems - is also a decisive factor influencing the potential threat situation. This must also be countered with technical aids.
MDM at the federal level only with minimum standards
With the help of systems for Mobile Device Management (MDM), mobile devices can be integrated into the IT infrastructure of a federal agency and managed centrally. With a view to security, the core function of the MDM system is the effective enforcement of defined security guidelines and configuration parameters on mobile devices. The minimum standard therefore defines functional and non-functional minimum security requirements that an MDM system must meet if it is to be used in a federal agency. These can therefore already be used in the context of an award procedure.
In addition, the minimum standard also places security requirements on the operation of the MDM. By implementing both technical and organizational measures, the minimum standard enables a minimum level of security to be achieved when using an MDM.
More at BSI.Bund.de
About the Federal Office for Information Security (BSI) The Federal Office for Information Security (BSI) is the federal cyber security authority and the creator of secure digitization in Germany. The guiding principle: As the federal cyber security authority, the BSI designs information security in digitization through prevention, detection and reaction for the state, economy and society.