In recent years, we have witnessed instant messaging (IM) apps begin to enter the market with some speed. WhatsApp is a popular instant messaging app amongst consumers and recently reached 250 million users according to Digital Trends. However, for enterprises, security of IM apps is absolutely crucial as they transmit business data and confidential information.
Check Point found that 64% of UK enterprises stated external attacks had risen considerably in the last 12 months, with indirect internal data leaks rising more quickly. One of the difficulties was managing security across the organisation. These findings clearly highlight that new products and services added to enterprises need to already be secure.
A new survey reveals that a large proportion of UK enterprises (72%) have forbidden the use of public instant messaging (IM) software, such as MSN and Yahoo!, due to security concerns. Many enterprises were worried about team members downloading IM apps without their knowledge and possibly sending sensitive company information even though most believed IM could bring benefits to their enterprise. Another finding was that only 12% kept an audit trail of messages sent through public IM apps even though regulations state they must keep a log of all company information with some stating they didn't know they were required to keep an audit trail or they found it too complicated.
Gartner outlines security risks of IM apps which include:
Check Point found that 64% of UK enterprises stated external attacks had risen considerably in the last 12 months, with indirect internal data leaks rising more quickly. One of the difficulties was managing security across the organisation. These findings clearly highlight that new products and services added to enterprises need to already be secure.
A new survey reveals that a large proportion of UK enterprises (72%) have forbidden the use of public instant messaging (IM) software, such as MSN and Yahoo!, due to security concerns. Many enterprises were worried about team members downloading IM apps without their knowledge and possibly sending sensitive company information even though most believed IM could bring benefits to their enterprise. Another finding was that only 12% kept an audit trail of messages sent through public IM apps even though regulations state they must keep a log of all company information with some stating they didn't know they were required to keep an audit trail or they found it too complicated.
Gartner outlines security risks of IM apps which include:
- Eavesdropping - accessing data when wireless connection is not secure or attacks.
- Device loss - losing the device and accessing data held on device.
- Spoofing and hijacking - taking control over IM whilst team member is in the app.
- Intentional data leakage through IM - through activities like file sharing.
- Malware - received from contacts in IM.
Three key security measures which Gartner propose for IM apps are:
- Authentication
- Encryption
- Server Location
Firstly, one of the key security measures that enterprises should adopt with IM apps is authentication. Authentication seeks to ensure that the person accessing the IM app is indeed the correct user. It is suggested that for optimum security to be achieved, both the device and the user should be authenticated and it is recommended that enterprises ensure team members have a secure password when accessing the device.
Secondly, encryption is defined by Wikipedia as "the process of encoding messages (or information) in such a way that eavesdroppers or hackers cannot read it, but that authorized parties can". It is recommended that end-to-end encryption is used to reach optimal security but it was recognised that this feature is difficult to find in an IM app with BBM identified as not using end-to-end encryption. One of the reasons that many do not offer this feature is because it can be difficult to implement as the application must be installed on both mobile devices and be used by both users' devices.
Security can also vary depending on where the server is located. It is recommended that enterprises store the messaging server within their premises or they can alternatively use an IM company that holds a good reputation for security.
HSL Mobile's upcoming launch of IM/SMS, a messaging service that combines instant messaging (IM) with SMS, aims to give enterprises the most secure and far reaching messaging application for effective team communication. HSL Mobile’s IM/SMS is intended to meet the needs of enterprises around the world and enable teams to securely communicate whether they are based in the office or mobile. End-to-end security using strong encryption and long-term archiving of messages for regulatory compliance and oversight are some of the capabilities of the application and service.
Find more information by reading our Press Release: HSL Mobile Launch Secure Enterprise IM/SMS Messaging Service or please get in touch to learn more. You can also keep up to date with our developments by following us on LinkedIn, @hslmobile, Facebook or Google+.
Secondly, encryption is defined by Wikipedia as "the process of encoding messages (or information) in such a way that eavesdroppers or hackers cannot read it, but that authorized parties can". It is recommended that end-to-end encryption is used to reach optimal security but it was recognised that this feature is difficult to find in an IM app with BBM identified as not using end-to-end encryption. One of the reasons that many do not offer this feature is because it can be difficult to implement as the application must be installed on both mobile devices and be used by both users' devices.
Security can also vary depending on where the server is located. It is recommended that enterprises store the messaging server within their premises or they can alternatively use an IM company that holds a good reputation for security.
HSL Mobile's upcoming launch of IM/SMS, a messaging service that combines instant messaging (IM) with SMS, aims to give enterprises the most secure and far reaching messaging application for effective team communication. HSL Mobile’s IM/SMS is intended to meet the needs of enterprises around the world and enable teams to securely communicate whether they are based in the office or mobile. End-to-end security using strong encryption and long-term archiving of messages for regulatory compliance and oversight are some of the capabilities of the application and service.
Find more information by reading our Press Release: HSL Mobile Launch Secure Enterprise IM/SMS Messaging Service or please get in touch to learn more. You can also keep up to date with our developments by following us on LinkedIn, @hslmobile, Facebook or Google+.
For further information regarding HSL Mobile, visit us at:
follow us on LinkedIn, @hslmobile, Facebook or Google+
or call us on +44 (0)1506 605 260
or email us at sales@hslmobile.com
