- Minimizes risk of data loss
- Email content never resides on user device
- Content immediately not available in case of stolen or lost device
- No client installation, local encryption or remote wipes
Taking the Mobile Device Out of the Email Security Equation
The most significant source of data loss these days comes from lost or stolen mobile devices containing sensitive business e-mails, which are automatically downloaded to the device from the organization's internal Exchange servers.
Common mobile security solutions try to solve this problem by concentrating on securing and encrypting data on the device itself. While encrypted data is better protected than unencrypted data, not all devices support encryption. Even for those that do, encrypted data on a stolen device can be decrypted given sufficient time and effort. To mitigate this problem, some solutions would have you install custom applications on your devices. However, this only replaces one headache (ensuring all your users have devices with robust encryption support) with another (managing custom installations on a multitude of different mobile devices).
Remote wipes are also not sufficiently reliable against data loss since they depend on the device being connected to the Exchange server upon synchronization and receiving the remote wipe signal. In the case of a fired employee whose account credentials have been disabled, for example, the device will not be able to sync and will not be remotely wiped.
Revolutionary DLP Approach - No Content Stored on Mobile Device
In contrast with common solutions,ActiveSync Webmail offers a new approach for the problem of data loss. ActiveSync Webmail changes the email body to an online web page and leaves the mail header as expected by the device mail client. The result is that the only data stored on the device is the sender's name and subject. When authenticated user opens the message on his device, he sees a dynamically generated webpage containing the mail body. If a device is lost or stolen, the user is blocked on the server side and the web page can no longer be retrieved.
By dynamically changing the content sent by Exchange to the mobile device,your sensitive business data is never stored on the mobile device. When the device is lost, no sensitive data can be lost, since it wasn't there in the first place. Moreover, there is no need to ensure that your users' devices support data encryption or to install specialized clients on each device to enhance data security. This allows ActiveSync Webmail to work with virtually any device using its native mail client.
It should also be noted that no web page content is stored on the ActiveSync Shield servers. The content is generated on the fly as the user opens the mail message.
To allow offline usage of mails, mail can be saved locally on device for a limited time. After time expiration, ActiveSync Shield deletes the mail from the device and offers opening it via web option through the ActiveSync Webmail.