Public Sector

As Blackberry sunsets, public sector entities have been looking for next generation mobility solutions that can support mobile apps in both classified and unclassified contexts.

Hypori (originally DroidCloud) provides a ‘mobile first’ thin client

experience that keeps all the apps, data and management on enterprise servers as opposed to mobile end point devices. The ACE platform allows users to access a remote Android virtual device, similar to Virtual Desktop Infrastructure, but designed for touch interaction – both the Android OS and the hundreds of thousands of COTS apps available for it. We call it Virtual Mobile Infrastructure.

Hypori’s ACE platform integrates with existing EMM investments such as MDM (to manage the virtual devices), MAM and app stores (to deploy the ACE client and/or to deploy apps to virtual devices), etc – the virtual device is like a physical handset, but it is running a server.

“Our agency is focused on a thin client strategy. Hypori is our main path to provide a thin flexible operating environment for mobile

devices that relieves user applications of data in transit security requirements and keeps sensitive

data protected in the enterprise cloud.”

"JHU/APL has leveraged the Hypori platform to provide application services in our secure

mobile reference network. Hypori has been repeatedly demonstrated in this evaluation and

has proved to be a stable platform."

“Overall Objective: Implement Thin Client Cloud for Security – Store OS, applications and data in enterprise servers; no data on local device. Benefits:

• Network data can be securely accessed• Decreases chance of insider threat• Keeps secure data out of the hands of bad guys if the phone is lost• Protects data in the enterprise through security management, monitoring and auditing.”

Deborah Plunkett, NSA, AFCEA – 3rd Annual Defense & Security Mobile Symposium

“Virtual Mobile Infrastructure, where a commercial mobile device secure application interacts with data via a virtual phone running in our data center,”

Primary BYOD concerns have been:

“BYOD is about o�ering choice. By embracing the consumerization of Information Technology (IT), the government can address the personal preferences of its employees, o�ering them increased mobility and better integration of their personal and work lives. It also enables employees the flexibility to work in a way that optimizes their productivity… Virtualization: Provide remote access to computing resources so that no data or corporate application processing is stored or conducted on the personal device … In the right environment, BYOD programs can be an enormous success.”

It is complimentary to VDI. The ACE platform also integrates with the rest of the enterprise IT ecosystem, such as LDAP, two factor auth, system monitoring, DevOps deployment and auditing.

Hypori developed the platform in partnership with US DoD, and can provide customer references on request. The ACE platform is currently undergoing DoD penetration testing in preparation for production deployments on classified networks in early 2015. A Defense in Depth white paper is available on request, as are C&A related documentation. Hypori’s ACE platform is relevant to classified mobility (both enterprise and tactical) as well as mobile teleworking.

Data at rest, and the ability to remote wipe with a high

level of assurance.

Attestation and malware

prevention.

Employee privacy and user data

reimbursement.

The lack of a BYOD approved

policy.

Public Sector

White House

Rob, DoD

Mark, DoD

Antonio De Simone, JHU APL

a lva rezassoc ia tes .com 1-877-739-7289

Users want more than voice and a browser – they want S/MIME with attachments, real MS O�ce for mobile, commercial chat tools like Cisco Jabber, Microsoft Lync and Adobe Connect, VTC, Google Earth – and an open source based platform for building custom apps.

The ACE platform delivers this experience in compliance with NSA’s Mobility Capability Package, and can be deployed in a globally distributed cloud fabric at carrier scale down to a tactical mini server in a 4G bubble in theater.

Classified Mobility

There are some organizations for which the risk posture will always out weigh the potential cost savings of teleworking from personally owned devices. Certain parts of US government have not adopted VDI for home working, but most of the US government (civilian agencies and DoD) have accredited VDI for working from home from personally owned PCs.

The ACE platform allows an agency’s existing, approved thin client architecture to be extended to mobile devices (belonging to employees, contractors and partners) with a user experience that users want to use – mobile teleworking.

Mobile Teleworking

Access to Apps: Hundreds of thousands of COTS apps designed

for touch.

CSfC: Commercial platform, runs on commercial

handsets.

No Lock-in: Easy to get onto,

easy to get o� – it’s “just Android”.

Cost Savings: Much less expensive than an integrator-

based ‘one o�’.

Low Risk: Existing, ‘strategic’

DoD customers that can be referenced.

1-877-739-7289a lva rezassoc ia tes .com

Policy Compliance: No new policy required, it’s

just teleworking.

Secure: All apps and data in the cloud,

nothing to ‘remote wipe’.

"The Federal government spends almost $1.2B each year on mobility (DoE)." Mobile

Teleworking can help cut this figure in half.

Cost Savings: 80% cost avoidance compared

to a physical handset.

User Satisfaction: Access a richer user

experience from any device.

APPS

An agency with 30,000

unclassified Blackberries would save around

$24M per year

by moving to enterprise owned virtual devices

running in the agency’s data center.

www.energy.gov/sites/prod/files/2014/04/f15/DOE-IG-0908.pdf