Android Enterprise Introduces Device Trust for Enhanced Security

A new security solution, Device Trust, has been introduced by Android Enterprise to enhance the security of Android devices. This initiative is particularly timely as organizations navigate the complexities of hybrid work environments. Device Trust aims to verify real-time security signals to mitigate risks associated with data breaches.

What’s New with Device Trust

Device Trust empowers organizations to assess the security posture of any Android device—managed or unmanaged—prior to granting access to sensitive work data. This solution adheres to Zero Trust principles by continuously monitoring essential trust indicators, including operating system version, security patch level, and device lock strength.

According to a research director for endpoint security at IDC, Mike Jude, the introduction of Device Trust is a significant advancement. He noted, “Organizations demand a certain level of security on personal devices when connecting to work data and applications.”

Seamless Integration with Existing Security Tools

One of the key advantages of Device Trust is its ability to seamlessly integrate with existing security tools used by IT teams. The platform collaborates with established security providers such as CrowdStrike, Okta, Omnissa, Urmobo, and Zimperium, offering over 20 Android-specific signals across various domains, including:

– Enterprise mobility and unified endpoint management (EMM/UEM)
– Identity providers (IdPs)
– Endpoint Detection and Response (EDR) or Mobile Threat Defense (MTD)
– Security Information and Event Management (SIEM) systems

This integration facilitates the establishment of layered security policies and supports real-time decision-making across all Android devices.

Consistent Security, Regardless of Ownership

Device Trust is designed to provide consistent security checks whether employees utilize corporate-owned or personal Android devices. Organizations can verify device security without mandating EMM enrollment; simply installing a compatible partner security application suffices. This flexibility is invaluable in scenarios where comprehensive device management may not be feasible.

For instance, temporary workers and contractors often require immediate access to business applications. With Device Trust, secure onboarding is possible without a full IT setup, allowing for swift revocation of access upon the conclusion of their assignments.

Through Device Trust, Android Enterprise aims to furnish IT teams with real-time visibility and automated controls, addressing potential threats such as outdated software or lost devices swiftly and efficiently. This proactive approach minimizes exposure and enhances incident response mechanisms.

The Device Trust service is operational on Android 10 and newer versions. To facilitate further understanding, Android Enterprise will host a digital event titled “Android Talks Device Trust” on July 10, offering insights and use cases for interested organizations.