Interview of TAdviser with the CEO of Scientific Research Institute SOKB Igor Kalayda

Igor Kalayda: Yes, what is called – "sports interest".

There was a wish to check the capabilities, knowledge, abilities. Behind shoulders there was a solid experience. Till 2000 I served in Armed Forces, then in the State technical commission (nowadays to FSTEC of Russia).

Throughout all service was engaged in control of complex industrial automated systems, developed the regulatory and methodical base for certification of information security tools. In 2005 left from public service and together with Gazinformservice company founded Research institute of the systems of ensuring complex security (Scientific Research Institute SOKB).

Igor Kalayda: Knowledge and experience were a main product in 2005. The first income was gained from works on preparation of regulating documents for the system of certification of GAZPROMSERT (INTERGAZSERT). The system of certification in Gazprom was created till 2005, but at that time works on certification of information security tools and means of anti-terrorist protection in it were not carried out. At that time in Gazprom the uniform technical policy in these areas formed, one of a component of which is the corresponding industry regulatory base.

Igor Kalayda: In 2010 the problem of centralized operation by mobile corporate devices was not so relevant as today, in connection with use of a small amount of mobile devices and that only as phones. But at the same time there were already incidental requests for software development for installation and synchronization of the corporate phonebook, creation and the centralized mailing of "white" and "black" lists of subscribers.

For satisfaction of these requests our first "MDM", and in fact the system of centralized operation by the corporate reference book was also developed for telephone sets of Nokia based on Symbian OS.

Igor Kalayda: No, it was not the only function implemented in SafePhone 1.0.

In development process of model of threats appeared understanding of the need of the complete solution providing accomplishment not only service functions, but also data protection, which is kept on the mobile device, and transferred on wireless communication links.

Therefore except fixed functions of remote blocking of the device, erasing of information which is stored on it, the strengthened user authentication also original functions - managements of corporate app store, remote delivery and installation of applications to mobile devices of employees were implemented.

Management of corporate app store appeared very efficiently not only for protection against malefactors from App Store or Google Play, but also for the fast centralized updating on mobile devices of continuously finished corporate applications.

The management of corporate shop also assumes its complete set the entrusted applications that in itself is the separate area of work of institute, including analysis of the code of applications, their powers, appeals to resources in the Internet, etc.

It allows to include in the structure of corporate shop any applications, but after careful check. Do you want the game Angry Birds? Well, but at first we will check: as where these "birds" carry away what resources of phone use and whether it is dangerous to the owner.

So all functions of our MDM are not invented and not copied, and developed in response to customers needs and on the basis of real model of threats.

Igor Kalayda: Now our flagship product – SafePhone Plus. It is more likely EMM, i.e. the corporate platform which allows to create the protected mobile jobs due to centralized operation by security policies, applications, content on them. Therefore there were new scopes of SafePhone Plus.

For example, for education at us it is developed and the solution intended for management of electronic textbooks is implemented. Very interesting direction of mobility connected with the centralized distribution and updating of educational content of large volume, access control of pupils to undesirable Internet resources.

Besides, at implementing solution at the first six Moscow schools we got invaluable experience of stress testing from "little users", being for us ideal model of the internal violator, owing to eccentricity of thinking.

The solution focused on problems of industrial security and labor protection due to control of indicators of the state of health and location of employees of dangerous productions in real time (RTLS) is developed for industrial enterprises. Using our solution the relevant services know exact location of the worker in workshop, on the building site, a warehouse, the sea platform, etc. and also its status in real time, and can preventively react to potentially dangerous situation, preventing possible accidents. In case of approach of emergency on an industrial facility, within several seconds it is possible to receive a realistic plan of evacuation of workers taking into account their location, a status and to organize the instant notification means of SafePhone.

Igor Kalayda: For the last three years we implement projects for the benefit of PJSC Rosseti, Rostec state corporation, United Aircraft Corporation and other customers.

Igor Kalayda: The choice of mobile devices and operating systems, as a rule, remains for the customer. Therefore we first of all are guided by the corporate customer whom mobile devices running Android, iOS, Windows, Tizen, SailfishOS interest now. Running all these operating systems a client part of SafePhone works. Server the SafePhone component works running the operating systems based on Linux differing, first of all, in the openness.

Igor Kalayda: I suggest to consider the potential Russian market of MDM solutions for the next five years, proceeding from the assumption that 20% of corporate employees and employees of a public sector will use corporate mobile devices.

Such employees in Russia about 2-2.5 million. Thus, the market very modest by the standards of world vendors.

Igor Kalayda: The competition in comparison with other categories of information security tools - not high. And to it there are several explanations. First, the need for such systems arose only 6-7 years ago that is commensurable with the term of development of industrial MDM. Secondly, import substitution process, certainly, helps to compete with foreign developers in the presence of a qualitative product.

Thirdly, actually obligatory software certification on lack of not declared opportunities for the domestic developer, unlike world vendors, does not represent a big problem. Now in the Register of the certified means of FSTEC of Russia only two MDM systems - SAP Afaria 7 and SafePhone are registered. Besides, SAP Afaria 7 is certified not completely but only its server a component.

Igor Kalayda: In my opinion, the main incentive of more active use of mobile devices in the corporate sector is need of performance improvement of work of employees and efficiency of business processes.

But all of us took some actions to help corporate customers to accelerate making decision on system implementation of mobile device management. So, now not only our products, but also services on their basis are available to customers. Own DPC in the protected execution and certified for security requirements is for this purpose constructed.

Use of MDM service provides to the customer economy of capital costs (CAPEX) and transition to payment of a subscription at the expense of operating expenses (OPEX).

The service model is especially attractive to customers whose need is limited to several tens mobile devices.

Igor Kalayda: In belief of the corporate customer about insolvency of the concept of BYOD there is no need any more. And case even not in Edward Snowden's publications or WikiLeaks, and that the bigger cost of final ownership of a management system for corporate devices in comparison with the concept of use of the corporate COPE device is a consequence of application of the concept of BYOD (Corporate-Owned, Personally Enabled).

Igor Kalayda: Yes. The concept checked decades was used at implementation and safe use of corporate desktop-.

Igor Kalayda: We have in "portfolio" an interesting product – SafeCopy which allows to do hundreds of copies of all pages of documents unique, at the same time differences are visually not noticeable for tens of copies and are almost imperceptible for hundreds of copies.

We carried out overload tests of SafeCopy, creating 450 copies of the federal budget for 2017 which volume together with applications is 4,713 pages

I.e. 450 unique sets containing 2,120,850 pages.

SafeCopy is also integrated with the MFP of production Konica Minolta and then each photocopy can be made unique.

Igor Kalayda: That application of SafeCopy provides protection of documents against unauthorized copying, photography, replications and outside a corporate information system.

And if, suddenly, unauthorized copying happens, SafeCopy will unambiguously set number of a copy of the document from which the copy was made.

Igor Kalayda: In my opinion, the most correct regulation is a registration of best practices in the form of regulating legal documents in close contact of methodologists and industry members on behalf of integrators, developers of means of protecting, customers.

Today state regulation of the industry of cybersecurity, in general, and looks.