Welcome!

Microservices Expo Authors: Jason Bloomberg, Elizabeth White, Liz McMillan, Pat Romanski, Mehdi Daoudi

Related Topics: Microservices Expo, Java IoT, Mobile IoT, Agile Computing, @CloudExpo, Cloud Security

Microservices Expo: Article

Mobilizing Business Data: The Holy Grail of Enterprise Mobility

Enabling mobile-first security & data distribution models that efficiently integrate line-of-business systems & mobile consumers

The last few years have seen an explosion in the demand for enterprise mobile solutions. This movement has been clearly reflected in the rapid evolution of the enterprise mobile platform ecosystems. From mobile device management (MDM) to enterprise mobile middleware technologies, the industry has produced a large number of technology platforms aiming to address the different needs of the mobile enterprise. Despite of the rapid growth of the enterprise mobile space, the industry remains without good solutions for addressing what, arguably, can be seen as the most important challenge of the current generation of enterprise mobile solutions: mobilizing business data.

The reasoning behind my argument is very simple. The current generation of enterprise mobile apps is, by and large, focused on creating mobile representations of existing enterprise business processes. The majority of these business processes are tied to on-premise or SaaS line of business systems. While mobilizing some of those business processes can be seen as trivial, the introduction of mobile consumers introduces a number of risks from an enterprise perspective on such diverse areas as data privacy, performance or security.

We Are Great at Sharing Files but Are Bad at Sharing Data
Email, calendar and file sharing have been the focus of the first generation of enterprise mobile solutions. From Citrix's ShareFile Box to the recent Microsoft SkyDrive Pro, the industry has seen a plethora of solutions that enable secure document sharing on mobile devices.

Despite the importance of file sharing, it is important to realize that it's only a small element of enterprise mobile data. A large percentage of enterprise mobile apps are required to access business data from on-premise or SaaS-based systems using mechanisms that can be abstracted via files or documents. Sadly, as an industry, the enterprise mobile technology ecosystem hasn't produced the equivalent of enterprise file sharing technologies but for business data.

MDM Is Not a Solution
Mobile device management (MDM) has become a common element of enterprise mobile infrastructures. As an attempt to differentiate in an overly crowded market, MDM vendors often claim to provide the infrastructure for securely mobilizing business data. While that statement might be true in some very specific scenarios, it is far from being a generalization. MDM platforms can certainly secure business data in some very constrained scenarios but they typically don't provide the infrastructure for mobile developers to interact with data living on corporate systems. This type of solutions require a more specialized infrastructure that is outside the domain of MDM platforms.

Mobile Business Data Needs New Security and Privacy Models
Enabling access to mobile business data from mobile devices introduces new security threats to organizations in areas that fall outside the domain of traditional enterprise security packages. While most security threats in the traditional enterprises fall under the spectrum of antivirus or secure networking platforms, these technologies are just starting to understand the DNA of security vulnerabilities in mobile applications.

These security risks get exponentially more complex when we factor in access to corporate data from mobile applications. In order to address these challenges, organizations should embrace mobile-first security techniques such as multi-factor authentication, mobile data encryption or contextual threat analysis that are designed with mobile applications as a first class citizen.

Accessing Mobile Business Data in Real Time
Enterprise mobile applications often require real-time access to data stored in corporate systems whether they are hosted on-premise or in SaaS systems. This requirement often translates into serious challenges for line-of-business systems that are not optimized for mobile consumers requesting information on real-time basics.

To enable real-time access to business data from mobile applications, enterprises should provide mobile-optimized interfaces to broker the communication between mobile apps and corporate systems. By mobile optimized, we refer to capabilities such as support for multi-factor authentication, friendly to concurrency, contextually aware, message throttling, support for offline communication models among other essential elements of enterprise mobile solutions.

Storing Transient Business Data in Device
In addition to accessing information in real time from business systems, enterprise mobile apps often are required to manipulate the data directly from the mobile apps or operate completely offline. Consuming business data in this fashion poses well-known challenges to enterprises in areas such as data privacy and security.

In order to enable "data in device" scenarios, enterprise mobile solutions should provide the mechanisms to secure the target business data in a form that can only be consumed in the context of a specific user session within a specific application. In addition, this type of pattern is typically recommended to rapidly changing not overly sensitive data that can become irrelevant after a certain period of time.

Distributing Mobile Business Events
Business data is not only access from mobile applications to on-demand basics. In some scenarios, enterprise mobile apps need to receive business data in the form of notifications or events triggered by line-of-business systems. While push notifications is a typical event-based pattern for distributing information to heterogeneous mobile applications, enterprise mobile solutions often require additional mechanisms that address some of the security and information consumptions patterns in the enterprise.

To address those scenarios, organizations need to establish the infrastructure for mobile applications to securely subscribe to events that can be published from line-of-business systems. These types of patterns will ease the burden of optimizing traditional corporate systems to support direct access from a large number of mobile consumers.

Caching Mobile Business Data
Despite the requirements for accessing business data in real time from connected devices, it's important to realize that the majority of traditional enterprise systems are not equipped to support the performance requirements of mobile consumers. To address this limitation, enterprise mobile infrastructures often rely on more modern data storage mechanisms to temporarily cache business data so that it can be available to enterprise mobile applications.

Even though the business data caching can introduce additional back-end infrastructure, it minimizes the impact on traditional corporate systems from both the development and operational standpoint

Business Data is Not Mobile: We Need Context
Mobile applications are a richer and also fundamentally different consumer of business data than traditional line-of-business applications. In addition to the aforementioned requirements about data privacy or performance, mobile business data takes a different connotation when based on the location, frequency of access, wireless network, etc.

Extending traditional business data living in corporate systems with contextual elements will not only maximize the efficiency and richness of enterprise mobile applications that need to consume those business data sets, but will automatically mitigate some of the security and privacy risks mentioned in previous sections. While the effort of contextualizing business data might seem daunting at first glance, it can be a great enabler for brand new mobile-first business capabilities

Summary
Enabling robust mechanisms for consuming business data is one of the most complex aspects of mobile solutions in the enterprise. While solutions like MDM have provided effective capabilities for securely managing devices and files, business data access remains a very challenging scenario for most enterprise mobile solutions. To address that challenge, organizations need to enable mobile-first security and data distribution models that efficiently integrate line of business systems and mobile consumers

More Stories By Jesus Rodriguez

Jesus Rodriguez is a co-founder and CEO of KidoZen, an enterprise mobile-first platform as a service redefining the future of enterprise mobile solutions. He is also the co-founder to Tellago, an award-winning professional services firm focused on big enterprise software trends. Under his leadership, KidoZen and Tellago have been recognized as an innovator in the areas of enterprise software and solutions achieving important awards like the Inc 500, Stevie Awards’ American and International Business Awards.

A software scientist by background, Jesus is an internationally recognized speaker and author with contributions that include hundreds of articles and sessions at industry conferences. He serves as an advisor to several software companies such as Microsoft and Oracle, sits at the board of different technology companies. Jesus is a prolific blogger on all subjects related to software technology and entrepreneurship. You can gain valuable insight on business and software technology through his blogs at http://jrodthoughts.com and http://weblogs.asp.net/gsusx .

Comments (0)

Share your thoughts on this story.

Add your comment
You must be signed in to add a comment. Sign-in | Register

In accordance with our Comment Policy, we encourage comments that are on topic, relevant and to-the-point. We will remove comments that include profanity, personal attacks, racial slurs, threats of violence, or other inappropriate material that violates our Terms and Conditions, and will block users who make repeated violations. We ask all readers to expect diversity of opinion and to treat one another with dignity and respect.


@MicroservicesExpo Stories
In his session at @DevOpsSummit at 20th Cloud Expo, Kelly Looney, director of DevOps consulting for Skytap, showed how an incremental approach to introducing containers into complex, distributed applications results in modernization with less risk and more reward. He also shared the story of how Skytap used Docker to get out of the business of managing infrastructure, and into the business of delivering innovation and business value. Attendees learned how up-front planning allows for a clean sep...
In IT, we sometimes coin terms for things before we know exactly what they are and how they’ll be used. The resulting terms may capture a common set of aspirations and goals – as “cloud” did broadly for on-demand, self-service, and flexible computing. But such a term can also lump together diverse and even competing practices, technologies, and priorities to the point where important distinctions are glossed over and lost.
Enterprise architects are increasingly adopting multi-cloud strategies as they seek to utilize existing data center assets, leverage the advantages of cloud computing and avoid cloud vendor lock-in. This requires a globally aware traffic management strategy that can monitor infrastructure health across data centers and end-user experience globally, while responding to control changes and system specification at the speed of today’s DevOps teams. In his session at 20th Cloud Expo, Josh Gray, Chie...
"At the keynote this morning we spoke about the value proposition of Nutanix, of having a DevOps culture and a mindset, and the business outcomes of achieving agility and scale, which everybody here is trying to accomplish," noted Mark Lavi, DevOps Solution Architect at Nutanix, in this SYS-CON.tv interview at @DevOpsSummit at 20th Cloud Expo, held June 6-8, 2017, at the Javits Center in New York City, NY.
We have already established the importance of APIs in today’s digital world (read about it here). With APIs playing such an important role in keeping us connected, it’s necessary to maintain the API’s performance as well as availability. There are multiple aspects to consider when monitoring APIs, from integration to performance issues, therefore a general monitoring strategy that only accounts for up-time is not ideal.
In his session at 20th Cloud Expo, Mike Johnston, an infrastructure engineer at Supergiant.io, discussed how to use Kubernetes to set up a SaaS infrastructure for your business. Mike Johnston is an infrastructure engineer at Supergiant.io with over 12 years of experience designing, deploying, and maintaining server and workstation infrastructure at all scales. He has experience with brick and mortar data centers as well as cloud providers like Digital Ocean, Amazon Web Services, and Rackspace. H...
When you focus on a journey from up-close, you look at your own technical and cultural history and how you changed it for the benefit of the customer. This was our starting point: too many integration issues, 13 SWP days and very long cycles. It was evident that in this fast-paced industry we could no longer afford this reality. We needed something that would take us beyond reducing the development lifecycles, CI and Agile methodologies. We made a fundamental difference, even changed our culture...
As many know, the first generation of Cloud Management Platform (CMP) solutions were designed for managing virtual infrastructure (IaaS) and traditional applications. But that’s no longer enough to satisfy evolving and complex business requirements. In his session at 21st Cloud Expo, Scott Davis, Embotics CTO, will explore how next-generation CMPs ensure organizations can manage cloud-native and microservice-based application architectures, while also facilitating agile DevOps methodology. He wi...
Docker is sweeping across startups and enterprises alike, changing the way we build and ship applications. It's the most prominent and widely known software container platform, and it's particularly useful for eliminating common challenges when collaborating on code (like the "it works on my machine" phenomenon that most devs know all too well). With Docker, you can run and manage apps side-by-side - in isolated containers - resulting in better compute density. It's something that many developer...
These days, change is the only constant. In order to adapt and thrive in an ever-advancing and sometimes chaotic workforce, companies must leverage intelligent tools to streamline operations. While we're only at the dawn of machine intelligence, using a workflow manager will benefit your company in both the short and long term. Think: reduced errors, improved efficiency and more empowered employees-and that's just the start. Here are five other reasons workflow automation is leading a revolution...
We have Continuous Integration and we have Continuous Deployment, but what’s continuous across all of what we do is people. Even when tasks are automated, someone wrote the automation. So, Jayne Groll evangelizes about Continuous Everyone. Jayne is the CEO of the DevOps Institute and the author of Agile Service Management Guide. She talked about Continuous Everyone at the 2016 All Day DevOps conference. She describes it as "about people, culture, and collaboration mapped into your value streams....
Cloud adoption is often driven by a desire to increase efficiency, boost agility and save money. All too often, however, the reality involves unpredictable cost spikes and lack of oversight due to resource limitations. In his session at 20th Cloud Expo, Joe Kinsella, CTO and Founder of CloudHealth Technologies, tackled the question: “How do you build a fully optimized cloud?” He will examine: Why TCO is critical to achieving cloud success – and why attendees should be thinking holistically ab...
Docker is on a roll. In the last few years, this container management service has become immensely popular in development, especially given the great fit with agile-based projects and continuous delivery. In this article, I want to take a brief look at how you can use Docker to accelerate and streamline the software development lifecycle (SDLC) process.
We define Hybrid IT as a management approach in which organizations create a workload-centric and value-driven integrated technology stack that may include legacy infrastructure, web-scale architectures, private cloud implementations along with public cloud platforms ranging from Infrastructure-as-a-Service to Software-as-a-Service.
Did you know that you can develop for mainframes in Java? Or that the testing and deployment can be automated across mobile to mainframe? In his session and demo at @DevOpsSummit at 21st Cloud Expo, Dana Boudreau, a Senior Director at CA Technologies, will discuss how increasingly teams are developing with agile methodologies, using modern development environments, and automating testing and deployments, mobile to mainframe.
As DevOps methodologies expand their reach across the enterprise, organizations face the daunting challenge of adapting related cloud strategies to ensure optimal alignment, from managing complexity to ensuring proper governance. How can culture, automation, legacy apps and even budget be reexamined to enable this ongoing shift within the modern software factory?
While some vendors scramble to create and sell you a fancy solution for monitoring your spanking new Amazon Lambdas, hear how you can do it on the cheap using just built-in Java APIs yourself. By exploiting a little-known fact that Lambdas aren’t exactly single-threaded, you can effectively identify hot spots in your serverless code. In his session at @DevOpsSummit at 21st Cloud Expo, Dave Martin, Product owner at CA Technologies, will give a live demonstration and code walkthrough, showing how ...
There are several reasons why businesses migrate their operations to the cloud. Scalability and price are among the most important factors determining this transition. Unlike legacy systems, cloud based businesses can scale on demand. The database and applications in the cloud are not rendered simply from one server located in your headquarters, but is instead distributed across several servers across the world. Such CDNs also bring about greater control in times of uncertainty. A database hack ...
@DevOpsSummit at Cloud Expo taking place Oct 31 - Nov 2, 2017, at the Santa Clara Convention Center, Santa Clara, CA, is co-located with the 21st International Cloud Expo and will feature technical sessions from a rock star conference faculty and the leading industry players in the world. The widespread success of cloud computing is driving the DevOps revolution in enterprise IT. Now as never before, development teams must communicate and collaborate in a dynamic, 24/7/365 environment. There is ...
API Security is complex! Vendors like Forum Systems, IBM, CA and Axway have invested almost 2 decades of engineering effort and significant capital in building API Security stacks to lockdown APIs. The API Security stack diagram shown below is a building block for rapidly locking down APIs. The four fundamental pillars of API Security - SSL, Identity, Content Validation and deployment architecture - are discussed in detail below.