I will just copy-paste partial snippets to provide you quick answers :)
************************************************** *************************
// Samsung KNOX is a new Android-based solution designed from the ground up with security in
mind
Android and the Enterprise
The success of Android among consumers and the developer community has, however, not translated to the enterprise. An April 2012 survey by Gartner found that fewer than 10% of enterprises planned on deploying Android devices in the next 12 months. The principal reasons cited were a perceived lack of security and limited management capability.
Introducing Samsung KNOX™
Samsung KNOX incorporates key technologies patented by the National Security Agency (NSA) and leverages hardware-level features to provide enhanced security to protect the operating system and applications. In addition, Samsung KNOX has been submitted to the US Government and Department of Defense (DoD) for compliance with initiatives, requirements and standards for mobile device security to enable its use in government and other highly regulated enterprise environments.
// Samsung KNOX addresses security at the operating system level in a comprehensive, three-prong
strategy
This section describes the technical aspects of three key features of Samsung KNOX:
1. Platform Security: Platform security of Samsung KNOX is the first line of defense against malicious attacks
2. Application Security: Samsung KNOX provides enterprises the ability to create and manage a secure container within
their employees' personal mobile devices
3. Mobile Device Management: Samsung KNOX offers comprehensive support for an enterprise virtual private network
(VPN) found in any mobile device. MDM enables a company's IT department to monitor, control and administer all deployed mobile
devices across multiple mobile service providers
Samsung KNOX for Government and High Security Use ////-- Here goes your Samsung Pay Knox Tripping Hardware Fuse :)
Government deployments generally require that government agencies or approved system integrators be the custodian of the entire mobile device software. As mentioned previously, Samsung KNOX devices have a hardware-protected root certificate reserved for government agencies or their trusted partners to create their own chain of trust. To achieve this Samsung signs the government's (or system integrator's) Level-2 (CA) certificate with the aforementioned root certificate, and provides tools to perform a one-time change from the default Samsung root of trust to the KNOX Government root of trust.
That fuse is not for Samsung Pay, it is to ensure root certs are either compromised or not. So, why current root methods are altering or compromising root certificates on our devices which is tripping the KNOX counter? Because it is not tripping if official firmware flashed, because is still intact and certs are safe.
--
Source: http://ift.tt/1rQ4ZWx
************************************************** *************************
// Samsung KNOX is a new Android-based solution designed from the ground up with security in
mind
Android and the Enterprise
The success of Android among consumers and the developer community has, however, not translated to the enterprise. An April 2012 survey by Gartner found that fewer than 10% of enterprises planned on deploying Android devices in the next 12 months. The principal reasons cited were a perceived lack of security and limited management capability.
Introducing Samsung KNOX™
Samsung KNOX incorporates key technologies patented by the National Security Agency (NSA) and leverages hardware-level features to provide enhanced security to protect the operating system and applications. In addition, Samsung KNOX has been submitted to the US Government and Department of Defense (DoD) for compliance with initiatives, requirements and standards for mobile device security to enable its use in government and other highly regulated enterprise environments.
// Samsung KNOX addresses security at the operating system level in a comprehensive, three-prong
strategy
This section describes the technical aspects of three key features of Samsung KNOX:
1. Platform Security: Platform security of Samsung KNOX is the first line of defense against malicious attacks
2. Application Security: Samsung KNOX provides enterprises the ability to create and manage a secure container within
their employees' personal mobile devices
3. Mobile Device Management: Samsung KNOX offers comprehensive support for an enterprise virtual private network
(VPN) found in any mobile device. MDM enables a company's IT department to monitor, control and administer all deployed mobile
devices across multiple mobile service providers
Samsung KNOX for Government and High Security Use ////-- Here goes your Samsung Pay Knox Tripping Hardware Fuse :)
Government deployments generally require that government agencies or approved system integrators be the custodian of the entire mobile device software. As mentioned previously, Samsung KNOX devices have a hardware-protected root certificate reserved for government agencies or their trusted partners to create their own chain of trust. To achieve this Samsung signs the government's (or system integrator's) Level-2 (CA) certificate with the aforementioned root certificate, and provides tools to perform a one-time change from the default Samsung root of trust to the KNOX Government root of trust.
That fuse is not for Samsung Pay, it is to ensure root certs are either compromised or not. So, why current root methods are altering or compromising root certificates on our devices which is tripping the KNOX counter? Because it is not tripping if official firmware flashed, because is still intact and certs are safe.
--
Source: http://ift.tt/1rQ4ZWx
from xda-developers http://ift.tt/21s9qTv
via IFTTT
No comments:
Post a Comment