Mobile devices, particularly smartphones, are exceptionally vulnerable to security breaches. They are easily lost, are filled with unknown applications, communicate over untrusted networks, and are often purchased by users without regard to IT standards and security features. Mobile device management (MDM) products and platforms can help mitigate these vulnerabilities. But managing mobile devices is complex, encompassing policy management, secure communications, secure storage, device authentication, remediation, and auditing. This white paper examines National Institute for Standards and Technology (NIST) and Defense Information Systems Agency (DISA) efforts to articulate requirements for MDM.
