ISLAMABAD ( BMZ REPORT)
Samsung has engaged Jazz -Mobilink – Jazz as its operating-partner to introduce Samsung ‘Knox’ in Pakistan. ‘Knox’ is a defense-grade security platform, and mobile-device management system, which is built into Samsung’s latest products, to protect confidential data and sensitive applications. Samsung’s award-winning enterprise solutions empower you to secure, manage and customize your business’s mobile devices.
Knox solutions allow businesses of any size to deploy Samsung mobile devices to meet their business needs. So the smart-device users can now build on the Knox platform, with extra security, management policies, and advanced device-customization.The security of corporate data on mobile devices remains a top concern for CEOs and CIOs, when adopting enterprise mobility. Finding a mobile-security solution that is both resilient and user-friendly can be a big challenge, which is why Samsung has designed the ‘Knox’ solution.
Knox is a multi-layered technology, built into both the hardware and software of Samsung’s latest devices. From the ‘Hardware Root of Trust’ to the Android Framework, Knox constantly verifies the integrity of the device and detects any tampering, ensuring your data is more secure. Security Enhancements for Android protect applications and data by strictly defining what each process is allowed to do, and what data it can access. SE for Android help to secure a device by using domains, rights, security policies and Mandatory Access Control.
Knox leverages a processor architecture known as ARM TrustZone. In TrustZone, there are two worlds: the Normal World, and the Secure World. Virtually all smartphone software, as we know today, still runs in Normal World. The Secure World is reserved for highly sensitive computations, and is used extensively by Knox for protecting confidential enterprise data. TrustZone consists of three core components: ‘TIMA KeyStore’, ‘Real-time Kernel Protection’, and ‘Attestation’.
‘Secure Boot’ prevents unauthorized boot-loaders and kernels from being loaded onto the device. This means that your device has not been tampered with and the Knox container can be loaded. ‘Trusted Boot’ ensures that the boot-loader and OS kernel are the originals from the factory. This is done by recording the original device measurements and consistently checking the device at the start up to make sure these measurements haven’t changed.
The ‘Hardware Root of Trust’ is a set of security mechanisms, built into device hardware, that flag any time the device’s default controls have been altered. These include ‘Secure Boot Key’ and ‘Device Root Key’, which perform authentication and encryption operations associated with the device.