Microsoft is bullet-proofing email on Windows Phone in an effort to follow Apple and Google into the workplace. Redmond has announced a deal with Good Technology to make Good for Enterprise available for use on Windows Phone 7.5 devices. The US mobile specialist will deliver FIPS-certified, 192-bit AES encrypted messaging for …
But it's US military grade
So all it does is delete the email of any Brits or Canadians that happen to be nearby
Re: But it's US military grade
Not quite... Your phone instead forwards all email to Wikileaks.
Re: But it's US military grade
And anything with "oil" in the subject line is forwarded to Halliburton.
Re: forward to Wikileaks
And lets the Iranian military hijack it.
Surely the device has encryption anyway doesn't it? Good is truly awful..
Re: Please no.
Windows Phone 7 does NOT offer device encryption. That's why Microsoft is scrambling to get something to convince savvy business users to even consider their OS.
But this is the wrong way to do it. Good is an app, not a device management tool. It encrypts its data, and can remotely wipe its data, but not data outside its domain.
Frankly, I'm surprised MS is doing this, because it takes people away from the Windows Phone apps. They must be getting really desperate.
"in an effort to follow Apple and Google into the workplace."
Did you think you'd see that description of an MS action back in 2001?
Almost as shocking as if you'd seen the phrase "Nokia's desperate attempt to become relevant to mobile again", at that time. And yet, they think microsoft will somehow help them with this ;-(
Meanwhile in India...
MS hand over the backdoor keys as requested by the gov (as for any other state who asks), rendering the email not much better than anything else running over the network...
Military grade security?
You mean like Gary McKinnon was able to walk through without really trying?
Re: Military grade security?
Definition of the local lending library in Chinese:
I'd be more impressed...
...If US companies were allowed to export decent encryption methods. But as far as I know they're not, as seems to be indicated in this article as well. 192-bit AES ? GPG can do better than that!
Heck, I'll see your GPG and "raise" with the more ontopic Outlook 2010 which by default provides an SHA256 hash algorithm and 256bit AES encryption algorithm.
How does lowering the encryption algorithm (in comparison with default Outlook 2010) weigh up against "enterprise security" on the Windows Phone ?
I have full confidence that Microsoft will eventually patch this whole security model up and provide a very decent solution. The main problem is that they should have thought about this up front IMO.
Re: I'd be more impressed...
"Heck, I'll see your GPG and "raise" with the more ontopic Outlook 2010 which by default provides an SHA256 hash algorithm and 256bit AES encryption algorithm."
Yeah, but then you will be stuck using LookOut!
I can't be secure
There is no way for any business of the military to check the integrity of such a WP7 device because it's all not only closed sourced, but also encrypted code you cannot modify.
There is no way to harden such systems, for example by strapping them down to just an e-mail client, and it doesn't matter how well the encryption is, if there is an exploitable bug/backdoor somewhere in the millions of lines you don't need but cannot throw out. Bugs to happen, that's why people who want to have secure systems harden them by throwing out everything they don't need. As long as boot-loaders are encrypted, this cannot happen on such devices.
Re: I can't be secure
course one could argue that by having access to the millions of lines of code it would potentially enable naughty bobby down the road to find a weakness and exploit it until its found out and patched, rinse and repeat.
I dont think either of the two systems are perfect, and franky its all a bit of a waste of time when people dont lock their bloody phones in the first place then live them in a strip bar!
Does it mean that my e-mail messages are resistant to small-arms fire? That my attachments can step on a land mine and still limp on to their destination? That my SMTP server is equipped with reactive armor?
What a worthless description....
Have to wonder
if this is the same "military grade" software US Defense Sect'y Bob Gates was running when his mailbox was hacked by the PLA -- oh wait, that's right, wasn't it the back end servers that were compromised? As others have said above, US security standards, military or commercial, are a joke because security always takes a back seat to user convenience and the government is actually afraid that a really serious effort to improve security would threaten their ability to eavesdrop. That second reason is somewhat understandable, but the first should get every CIO and the CEOs who employ them booted for dereliction of duty.
Remote control workforce
"Good for Enterprise is not only a versatile application for your employees’ portable devices, it also allows you complete control over your mobile workforce".