DHS S&T, BlueRISC Develop Security Technology for Mobile Devices
Wednesday, April 15, 2020 | Comments

The Department of Homeland Security (DHS) Science & Technology Directorate (S&T), along with BlueRISC, is developing a new cloud-based root-of-trust (CRoT) technology called EPRIVO Enterprise 2.0 to address personal use of enterprise devices. Within the same application, the CRoT technology separates business from personal assets and enables enterprise policy enforcement for access to sensitive data.

The Corporate-Owned, Personally Enabled (COPE) model of device ownership allows staff members to link personal accounts such as email to their corporate- or government-owned devices. But, by enabling employees to access both business and personal content on their mobile devices, COPE brings new security challenges to organizations.

Device users may prioritize convenience over strong security, accidently share sensitive information with unintended audiences, or use their corporate- or government-owned devices in contexts in which sensitive business information should not be shared. Solutions that address the users’ communications privacy while enabling organizations to protect business content are essential to making COPE work for everyone.

BlueRISC integrated the CRoT technology into its EPRIVO Enterprise 2.0 private email application. With the EPRIVO app on iOS or Android mobile devices, users can easily and securely access their existing personal email accounts and their corporate or government email accounts. EPRIVO is a private email application that can be used on both mobile devices as well as computers.

“The EPRIVO Enterprise 2.0 email system ensures the confidentiality of email in transit, in cloud storage at an email service provider and when stored on the mobile device, providing both physical and cryptographically based protections,” said Kris Carver, BlueRISC technical director. “Users can specify controls for the emails they send, including recalling messages or preventing the receiver from forwarding a message.”

S&T’s support has enabled BlueRISC to transition its CRoT technology to add enterprise security protections to EPRIVO email. Enterprise security administrators can use the enterprise administrator’s console to set security policy for each user’s enterprise email account, ensuring that business messages are protected.

Meanwhile, EPRIVO users can continue to use and retain full control over their personal email accounts that are accessed via the corporate- or government-owned mobile device. Users can also choose to add security protections to their personal email accounts through settings on the EPRIVO app.

“S&T’s support for BlueRISC’s EPRIVO Enterprise 2.0 is providing enterprise security administrators and mobile device users a valuable tool that protects the security and privacy of both business and personal email on corporate- or government-owned mobile devices,” said S&T Mobile Security Research and Development Program Manager Vincent Sritapan.

Would you like to comment on this story? Find our comments system below.



 
 
Post a comment
Name: *
Email: *
Title: *
Comment: *
 

Comments

No Comments Submitted Yet

Be the first by using the form above to submit a comment!

Site Navigation

Close