USA India
Home Articles UserTV Press Releases Dictionary Books Education Careers B-Channels Resources Forums Blogs Classifieds
Friday 29 Aug, 2008 eNewsletter Register Login
Archives
Articles By Date
Articles By Category
 
 
 Archives >> Details
Staying connected wirelessly
A new model for managing mobile devices in the enterprise.
Posted by : Jeff Einarson and Nikhil Deshpande

Handheld devices such as PDAs and cellular phones are maturing into robust application platforms for enterprise business applications. Their connectivity, convenience and communications capabilities show great promise for new productivity gains. So what's holding them back? Managing and provisioning these devices is anything but easy.

Bringing notebook PCs into the enterprise wasn't as problematic. Notebooks could simply use the enterprise infrastructure already in place for desktop computers. Too different an animal, handheld devices aren't as fortunate. A Gartner study notes that fewer than 30 percent of the handheld computers--PDAs and smart phones--in enterprises are sanctioned or managed at any level.

Are we living dangerously? Consider how easy handhelds are misplaced. Ditto for the data on them. In the wrong hands, this data can compromise both organizations and individuals.

Then there's managing and provisioning. To be cost-effective and productive, handhelds need to be integrated with business processes and workflow, support the required business applications, and be regularly updated with the latest software. Too often they're off the grid.

Intel and Computer Associates recently teamed up to investigate ways to bring handhelds into the fold, reduce the total cost of ownership, and the security risk. The result was a prototype management and provisioning system and a proof-of-concept exercise with the University of Arkansas at Pine Bluff Technical Services Department. The good news? It worked.

Rethinking handhelds

To develop our prototype we had to rethink how handhelds are provisioned. Today's handheld devices come with a built-in operating system and prepackaged applications like WinCE, Palm, and Symbian. These devices can only be managed at or above the operating system level.

For our purposes, that was too limiting. We needed handhelds stripped down to just the hardware and firmware--no pre-loaded operating system or applications.

Handhelds like these would give IT departments the flexibility to load the appropriate operating system and preferred business applications, as well as the required corporate data, to make the device both usable and manageable in the enterprise.

The key would be having an easy way for IT to provision such a handheld remotely wherever it (and the user) happen to connect to the enterprise for the first time.

For our proof of concept, Intel developed a prototype (sans operating system) using its Universal Communicator design. This concept handheld supported voice and data over either a traditional GSM/GPRS cellular network or using 802.11 WLAN technologies.

Our prototype system used the Common Information Model (CIM), a data schema that provides a rich, extensible mechanism for representing and manipulating entities and information related to management tasks. Most computing vendors such as Intel, Microsoft, Sun, Cisco, IBM, Dell, and HP have adopted CIM. The enterprise management system we used was Computer Associates Unicenter.

The proof of concept

Four different scenarios were tried to evaluate the managing and provisioning benefits of the prototype device. The setup was a server, an access point, and two prototype handhelds containing only Extensible Firmware Interface (EFI) firmware with CIM and 802.11 capabilities.

-- Scenario 1: Provisioning bare Universal Communicator over a wireless network connection and downloading a generic OS image. This scenario demonstrated how handheld devices could be distributed to users, powered up to connect to the network, and then be automatically configured for the network. It also showed how, through using asset ID and rules configuration, the appropriate operating system for each user could be automatically uploaded to each device.

Aside from the coding of the rules configuration, no time or effort would be required from IT staff.

-- Scenario 2: Provisioning a second bare Universal Communicator over a wireless network connection and downloading a different operating system image. This procedure was exactly the same as the procedure for the first scenario, except testers first examined an XML file to see how it's configured to send a different operating system to Universal Communicator #2.

The device was then powered on and went through the same connection steps as outlined in Scenario 1. At the end of Scenario 2, the tester verified that a different operating system image had been loaded by viewing the user interface.

Scenario 2 demonstrated how different operating systems could be assigned to individual devices through rules configuration. It went on to show how these operating systems could be automatically uploaded to the appropriate device upon connection to the network with very little involvement from the IT staff.

-- Scenario 3: Reprovisioning a Universal Communicator over a wireless network connection with an updated operating system. This procedure started out like both Scenario 1 and 2. The Universal Communicator booted up, was configured with network settings, and was recognized by Unicenter. Then:

1. Unicenter requested characterization information from the device and, based on the rule configuration and asset ID, determined that the device required an updated operating system.

2. Unicenter sent the device the URL of the appropriate operating system.

3. The Universal Communicator downloaded the operating system from the http server.

4. The operating system loaded and the device rebooted.

5. The tester verified the operating system image was loaded by viewing the new user interface.

Scenario 3 showed how XML rules can be used to identify handhelds in the field that need operating system updates. It also demonstrated how these devices can receive updates automatically through the network with no involvement from the IT staff other than setting up the rules configuration.

-- Scenario 4: Identifying and decommissioning an unauthorized Universal Communicator over a wireless network connection. This procedure started out like the others--the Universal Communicator booting up, being configured with network settings, and then being recognized by Unicenter. Then:

1. Unicenter requested characterization information from the device and, based on the asset ID and rule configuration, determined that the device was not authorized.

2. Unicenter sent the device the URL of a specially programmed operating system for this situation.

3. The Universal Communicator downloaded the operating system from the http server.

4. The operating system was loaded and the device rebooted.

5. The operating system rendered the device inoperable.

Scenario 4 showed how asset ID and XML rules can be used to identify handhelds in the field that have been reported stolen or are otherwise unauthorized. It also demonstrated how these devices can receive a special operating system image automatically through the network that renders the device inoperable, preventing access to the network and to the data stored in the remote device.

Flying colors

Through this proof-of-concept study, we demonstrated the management and provisioning of handheld devices over a wireless network. We showed how:

-- A newly introduced handheld device could be automatically provisioned with the appropriate operating system and applications for a particular device for a particular user

-- An unauthorized handheld could be identified upon its first attempt at connection and then disabled through network management software

This proof of concept was part of ongoing research that Intel is doing to reduce handheld TCO, increase ROI, and enhance the user experience.

The authors wish to thank the University of Arkansas at Pine Bluff, for their participation in this research.
 
 
Archives by Date
 
 
 
 
 
Copyright © 2001-2008 ComputerUser, Inc., All Rights Reserved
About us | Terms of use | Privacy Policy | Legal | Trademark/Copyright | Awards | Advertise | Writer guidelines | Sitemap | Contact | FAQ's | Feedback  | Link to us

Here are the topics we cover computer certification computer careers computer training computer games consulting data recovery data security digital entertainment emerging technology gadget reviews handheld computers hardware reviews home automation home networks home office how-to advice internet linux local companies local news local profiles macintosh mp3 players network security online music online security open-source small-business technology soho software reviews technology books technology dictionary vpn web site reviews wi-fi windows wireless technology tech articles tech news press releases tech dictionary education resources career solutions create your personal blog upload your videos become a writer usergroups special interest group SIG 3com cipts adobe adobe certified expert apc ncpi apple achds acpt acsa actc avaya bea 8.1 certified administrator 8.1 certified architect 8.1 certified developer 9 certified administrator bicsi rcdd checkpoint ccmse ccsa ccsa ngx ccse ccse ng plus with ai ccse ngx cisco access routing and lan switching ccda ccdp ccie ccip ccna ccnp ccnp old ccsp ccvp crmam ip communications optical proctored exams for validating knowledge sales specialist storage networking vpn and security wireless lan citrix cca 3.0 cca 4.0 cca 4.5 cca xp ccea 3.0 ccea 4.0 ccea xp ccia ciw ciw associate ciw certified instructor master ciw admin master ciw designer master ciw enterprise developer security analyst comptia a+ network+ security+ server+ computer associates ca cusa cuse cwna cwna cwsp dell eccouncil cea cep certified ethical hacker chfi e-commerce architect emc emc specialist implemenation technology foundations enterasys ese eta exam express exin exin itil extreme networks ena ens filemaker f7cd f8cd fortinet fortigate foundry cne fujitsu fujitsu guidance software ence hdi css hda hdm hdsa hitachi hitachi certified professional hp ais apc app aps ase certified systems developer csa cse master ase huawei hcne hyperion hcp ibm advanced deployment professional advanced technical expert application developer business process analyst certified administrator certified advanced system administrator certified advanced technical expert certified associate developer certified enterprise developer certified solution designer certified specialist certified systems expert database administrator db2 deployment professional enterprise developer eserver certified specialist ibm on demand business solution advisor solution designer solutions developer solutions expert storage administrator system administator iisfa cifi intel isaca cisa isc cissp sscp iseb itil ism cpm juniper jncia jncis legato lcaa lcea lotus clp lpi lpic level 1 lpic level 2 lpic level 3 macromedia mcafee mcdata csnd microsoft crm mbs mcad .net mcdba mcdst mcitp mcp mcpd mcsa longhorn mcsa 2003 mcsa 2008 mcsd .net mcse mcse 2000 security mcse 2000 to mcse 2003 upgrade mcse 2003 mcse 2003 messaging mcse 2003 security mcse 2008 mcts microsoft business solutions microsoft partner competency mile2 cnsa network appliance nac-na nac-nie naca nace nacp network general sniffer certified professional nokia nokia security administrator nortel ncde ncds ncse ncss ncts novell5 cna 5 cne 6 cna 6 cne 6.5 cne cne upgrade omg ocup oracle 10g dba 10g oca 11i 8i dba 9i dba 9i internet application developer oca ocp8 to ocp8i dba upgrade exam pmi project management professional polycom pcve redhat rhce rhct sair sas institute sas scp saas scp snia snia certified architect snia certified professional snia certified systems engineer snia storage networking certification program administrator professional associate symantec scse scsp scta scts teradata tca v2r5 tcad v2r5 tcda v2r5 tcis v2r5 tcm v2r5 tcp v2r5 tia ccnt ctp tibco tcp trusecure ticsa veritas infraguard chamber of commerce vcp vmware certified professional webex linkedin facebook myspace Professional page layout, image editing, vector illustration, and print production Website design, development, prototyping, and blogging Creation of rich interactive content Industry-standard visual effects and motion graphics Video capture, editing, and production; DVD titling; and digital audio, Adobe Photoshop CS3 extended, Adobe illustrator CS3,Adobe indesign CS3,Adobe Acrobat 8 Professional, Adobe Flash CS3 Professional, Adobe Dreamweaver CS3,Adobe Contribute CS3,Adobe Fireworks CS3,Adobe After Effects CS3 Professional, Adobe Premiere Pro CS3,Adobe Soundbooth CS3,Adobe Encore CS3,Adobe OnLocation,Adobe Bridge CS3,Adobe Version Cue CS3,Adobe Device Central CS3,Adobe Stock Photos, Intel Pentium 4 (1.4GHz processor for DV; 3.4GHz processor for HDV), Intel Centrino, Intel Xeon, (dual 2.8GHz processors for HD), or Intel Core, Duo (or compatible) processor; SSE2-enabled processor required for AMD systems Microsoft Windows XP with Service Pack 2 or Microsoft Windows Vista Home Premium, Business, Ultimate, or Enterprise (certified for 32-bit editions) 1GB of RAM for DV; 2GB of RAM for HDV and HD; more RAM recommended when running multiple components 10GB of available hard-disk space (additional free space required during installation) Dedicated 7,200 RPM hard drive for DV and HDV editing; striped disk array storage (RAID 0) for HD; SCSI disk subsystem preferred Microsoft DirectX compatible sound card (multichannel ASIO-compatible sound card recommended),1,280x1,024 monitor resolution with 32-bit color adapter Blu-ray burner required for Blu-ray Disc creation OHCI compatible IEEE 1394 port for DV and HDV capture, export to tape, and transmit to DV device QuickTime 7.1.2 software required to use QuickTime features Broadband Internet connection required for Adobe Stock Photos* and other services