BYOD企业移动设备管理技术

[摘要] 提出了中兴通讯自带设备办公（BYOD）解决方案。方案在终端层、接入层、控制层、应用分别解决企业面临的设备安全管理、应用安全管理及数据安全问题。终端层提供BYOD安全套件；接入层提供信令媒体接入网关和统一接入控制服务，提供移动设备安全接入服务，并提供统一的设备鉴权认证及用户鉴权认证；控制层用于控制移动用户及设备的行为模式；应用层用于提供具体的企业移动服务，包括通用的企业通信服务、企业办公应用支撑、虚拟桌面、企业网盘，以及企业业务相关的移动应用。

[关键词] 携带自己设备办公；移动设备管理；移动应用管理；安全策略；环境感知

[Abstract] This article describes ZTE’s bring your own device (BYOD) solutions to device security management, application security management, and data security management at the terminal layer, access layer, and control layer. The terminal layer provides a BYOD security set. The access layer contains an access gateway and unified access control, which provides secure access for mobile devices and unified device and user authentication. At the control layer, mobile user and device behaviors are controlled. The application layer provides specific enterprise mobile services, including general business communications, corporate office application support, virtual desktop, enterprise network disk, and enterprise business-related mobile applications.

[Keywords] BYOD; MDM; MAM; security policy; scenario detection