A Security Analysis of Enterprise Mobility Manager

Identifier

4796

Author

Sujit Shrestha

Date

2016

Document Type

Thesis

Degree Name

Master of Science

Major

Computer Science

Committee Chair

Dipankar Dasgupta

Committee Member

Deepak Venugopal

Committee Member

Naveen Kumar

Abstract

An exponential increase in the use of insecure mobile devices in enterprises raises a greater risk to enterprises’ data confidentiality. Many enterprises are adopting a reliable solution known as Enterprise Mobility Manager (EMM). EMM securely manages and maintains various enrolled mobile devices, enterprises’ applications and content. However, many researchers have only focused on design and implementation but not on the security of the solution. Therefore, we performed a rigorous security analysis on one of the EMM products to find potential security issues. The analysis revealed the existence of common software vulnerabilities and sensitive information disclosure. With sophisticated exploit tools, some valid attacks are successfully performed defeating EMM’s security features such as locate device, wipe data and lock device. To accommodate our general security recommendations for EMM, we developed a prototype that benefits EMM admin to determine compatibility and security checks of devices before enrolling them in the system.

Comments

Data is provided by the student.

Library Comment

Dissertation or thesis originally submitted to the local University of Memphis Electronic Theses & dissertation (ETD) Repository.

Recommended Citation

Shrestha, Sujit, "A Security Analysis of Enterprise Mobility Manager" (2016). Electronic Theses and Dissertations. 1521.
https://digitalcommons.memphis.edu/etd/1521