back to article BYOD cheers up staff, boosts productivity - and IT bosses hate it

Costs, security headaches and battles to get different technologies working with each other are stalling Bring-Your-Own-Device schemes in UK offices, according to new figures. In an Insight poll of 232 IT managers in Blighty, 79 per cent said they aren't implementing strategies to allow employees to buy their own kit for both …

COMMENTS

This topic is closed for new posts.
  1. Ben Tasker

    Just waiting for the day when someone with a grudge helps a co-worker install a dodgy copy of Office and then snitches on their employer to the BSA.

    Logic would suggest that the employer shouldn't be liable for licensing of BYOD kit, but when has logic ever played a part for the BSA et al?

    I'm not against BYOD as long as it can be effectively managed to ensure compliance with whatever local security policies are in place. It's not impossible to do this with a lot of devices, but that doesn't mean it would benefit from further simplification.

    I'd still rather people were using work provisioned kit. Certainly in past employment there were elements of the network that BYOD kit (had the trend existed then) would never have been allowed near due to a near paranoid level of security.

  2. jai

    VM the solution?

    I was thinking about this - would it not be possible for the employer to provide a VM image which contains a locked down environment that only contains licensed software and only connects to the office network and is also ringfenced from the laptop it is running on. That way, you can BYOD, but it stops any garbage you've installed on it yourself from accessing the office network or corrupting work files. And also could be set up to prevent people moving files out of the VM environment? And at the worst case, the employer could remote wipe the VM image or re-deploy a clean image, saving the effort of troubleshooting (because all work documents should be being stored on office network anyway).

    Or are these the kind of things that they're talking about in the article when they say the tools are likely on the way in the near future?

    1. Captain Underpants
      Happy

      Re: VM the solution?

      Yep, that's Microsoft's idea too. Win8 To Go explicitly supports this, providing USB3-bootable Windows images which can be domain bound and configured to allow no access to local storage media, meaning that the worker gets to use their hardware but doesn't get to inflict their OS install (or dodgy media) on the corporate network.

      Of course, those who really want BYOD won't like that, because it's adhering to the letter of their request ("Let me use my computer for work") while vetoing the spirit of the request ("let me use my computer, including my badly-configured OS with loads of dodgy installs, out of date plugins, and dodgily-sourced media, for work purposes").

      1. Anonymous Coward
        Anonymous Coward

        Re: VM the solution?

        That would be my point. If I wanted to go down the BYOD route, it would be so I didn't have to use Windows. Running Windows in a VM doesn't help with that.

        1. Anonymous Coward
          Mushroom

          Re: VM the solution?

          "If I wanted to go down the BYOD route, it would be so I didn't have to use Windows."

          But you are in the minority. Most of the peasantry that want to BTOD want to do so not for religious or technical reasons, but because (pay attention IT dictators) the stuff that they are provided with as standard is, not to put too fine a point on it, shit.

          Companies happily let barely literate oiks drive company vans emblazoned with the corporate brand, costing £20k full fitted and tooled. Likewise, a £30k perk car for a middle manager is no problem. There is endless money for PITA DSE training. But when it comes to IT, you bastards start handing out dumb phones that normal people wouldn't expect their ten year old to tolerate. Or shite "smart" phones like the Orange San Diego, and real low end HTCs, all of them with crap screens, sluggish responses, and polices including usage restrictions that ban using the camera or music capabilities. Same with PC's. I have to lug a Lenovo brick around with me, loaded with corporate IT "security" bloatware that takes for fucking ever to start or resume from hibernation. It has shit battery life, low res screen, and no redeeming points at all. Cheapy third party docking stations, and keyboards out of a Christmas cracker complete the unhappy picture for the end user. Ooh, sorry, forgot to mention the diabolical cheap, crap mice you lot think adequate.

          So, to all those who hate BYOD, I understand and sympathise with WHY you hate BYOD. In your shoes I would. But if you'd stop handing out SHITE, you will alleviate the BYOD pressure. Most of your users are paid many tens of thousands (and the company believe they earn their keep) so what's the big fat hairy deal with dishing out iPhones, Galaxy S3s, or close equivalents? Why can't we have a decent ultrabook with a good battery life and a sharp screen?

          It's all in your hands.

    2. Anonymous Coward
      Anonymous Coward

      Re: VM the solution?

      "to provide a VM image which contains a locked down environment that only contains licensed software and only connects to the office network and is also ringfenced from the laptop it is running on."

      Nice idea, doesn't work though. General rule is that you can't consider a VM inside a non-secure environment trustworthy.

      The other way around, though (non-trusted VM in a trusted environment) would be a possibility.

    3. Chris Miller

      Re: VM the solution?

      It's the other way round. Anyone who opens their corporate network and allows any old malware-infected device to be connected, deserves everything they get (which will be a lot of pain). What I'm happy to do is provide a secure WLAN unconnected to the corporate network with only Internet access (probably filtered to block nasty and/or time-wasting stuff). From there (or from your roaming portable device, or from an Internet café) you can access a virtual (Citrix) image of your corporate workspace. Enjoy!

  3. RonWheeler

    I call shenanigans

    "thappy people equals more productive people"

    The lazy heifer sitting opposite me on her iphone all day, using Facebook and Drawsomething, has a very enjoyable time at work. Clearly i misunderstand and she is actually being productive. .

    1. Pete 2 Silver badge

      Re: I call shenanigans

      Maybe she's not being productive per se. But at least she's not stopping other, actually useful, employees from working. It may be that the best you can hope for with some co-irkers is that the less they do, the less they screw up for others to fix.

    2. Neil Greatorex
      Headmaster

      Re: I call shenanigans

      "I call shenanigans"

      You call shananigans what? George? Ugly? Green? Theobald?

      For heavens sake please speak English.

      1. Anonymous Coward
        Happy

        Re: Please Speak English

        Co-irkers is a rather nice contribution to the language

        1. Pete 2 Silver badge

          Re: Please Speak English

          I claim no originality for it. Check out the Dilbert cartoons and books.

  4. Boris the Cockroach Silver badge

    And how

    long before employers start saying in job ads

    "Must have own smartphone, or tablet with ****** VM client costing £400 installed"

  5. Anonymous Coward
    Anonymous Coward

    "BYOD cheers up staff, boosts productivity..."

    Not strictly true, is it. That observation only comes from the 21% who have implemented it. 79% would say "haven't got a clue, mate".

    It's a stinky idea and I for one do not welcome it.

  6. Khaptain Silver badge
    FAIL

    Responsability

    Since I am on the firing line when things go wrong, there will never be BYOD in our offices.

    Why would employees be any happier using their own device anyway, they are supposed to be working. Whether I am using my own personal laptop or a company workstation makes no damned difference. Or is it just so that they can do FB, or some other social twatnet applications during the working hours without the IT Department blocking them out.

    Also when an employee has a P2P client and illegal files/downloads, illegal porn, Viruses, Snuff movies on his laptop in my network, then I suddenly become partly reponsable for whats on that device, NO THANKS. All that needs to happen is that that user switches on file sharing and one other muppet downloads it across my Wifi/Lan, it can then be considered as having been made availble on my network, therefore company liability.

    Legally this will become a living nightmare.

    We provide material that has been validated and capable of running the software that our users require on a daily basis, we simply have no need/reason for BYOD.

    Personal devices should remain just that, personal.....

    This whole BYOD thing just stinks of marketing busllshit.

    1. Anonymous Coward
      Anonymous Coward

      Re: Responsability

      "Why would employees be any happier using their own device anyway"

      Because IT buyers don't spend with users in mind, they buy whatever has the best kickbacks. For example, Windows Phone shite they tried to offload onto us.

    2. Anonymous Coward 101
      IT Angle

      Re: Responsability

      'Since I am on the firing line when things go wrong, there will never be BYOD in our offices.'

      That's the winning attitude employees expect from I fucking T. I put it to you that you just can't be fucked working out a solution to BYOD security implications? You'd be happier if computers were banned in your office wholesale.

      1. Khaptain Silver badge

        Re: Responsability

        My responsibility is first towards my employer, he is the one that puts money into my bank account every month without fail. In fact my employer keeps everyone in my company in work and that should never be forgotten.

        Secondly I must ensure that my colleagues have the most efficient equipment that is capable of helping then do the job they do, I know their job very well and as such i know the correct equipment to buy. I ensure that ALL of their equipment has the best standard that the budget allows. I would rather spend more on a good keyboard and a mouse than the latest I7 for which they would never use even 10% of its power.

        I also have to ensure the security, failure in security will create problems for our clients, therefore security is also taken seriously. BYOD does not provide any benefit for my colleagues, but it can present an unnecessary risk for the company. My company do not like taking risks, they pride themselves on ensuring a 24h/365day service for our clients.

        I work very closely with my colleagues and ensure that that IT is not a burden, I explain why a tight secure system helps them remain in work, they also understand and accept why Facebook, Youtube et al are on a blacklist.

        Our company is successful , we have good clients and we try and try to do things professionally.

        The first thing that I note about your response was your attitude, and it is the kind of attitude that most companies can live without.

        IT is a lot more than playing with the latest gadgets. The bleeding edge is where most of the heroes start, the cemetery is where they end up.

        .

      2. Ben Tasker

        Re: Responsability

        @ A/C 101

        That's the winning attitude employees expect from I fucking T. I put it to you that you just can't be fucked working out a solution to BYOD security implications? You'd be happier if computers were banned in your office wholesale.

        Based on your attitude, I think you might be on the wrong site mate..... just saying

        1. Son of Steve

          Re: Responsability

          Maybe, but he's right. IT = people telling me how to do my job, and saying no to common sense because of "policies", or - whisper it - because there's job-security in complexity. BYOD is a reaction to exactly this kind of nonsense. Embrace it, or get crushed by it.

      3. K
        Megaphone

        Re: Responsability

        You sir are a whinge bag!

        If you want to use your own device, do your own f*cking research on how to secure it, then demonstrate to me its sufficient... Chances are your company supplies adequate hardware for you to do your job in a productive secure manner, just because your a FANBOI, doesn't give you the right to scream and stomp.

        WAHHHH WAAHHHHH WAHHH BABY WANTS HIS IPHONE!!

        1. Dana W
          Meh

          Re: Responsability

          @K "WAHHHH WAAHHHHH WAHHH BABY WANTS HIS IPHONE!!"

          Baby wants something that works, not low bid Microsoft crap that's got about as much joy in use as having your teeth paned flat with a rusty file.

          The real crybabies are all the middle aged MCSE types who want go back to the 90s and the Windows only world.

          Linux or Mac, too many people are out of Microsoft Jail, and don't want back in. The genie is out of the bottle, and the old days are not coming back. Go out to the University and see what your new bosses are using. "The times they are a'changing"

    3. Anonymous Coward
      Anonymous Coward

      Re: Responsability

      "Since I ..." shows in 2 words what is wrong with your justification.

      Your are not there to serve your interests but those of business and the users. IT is not a end, but a means.

      If I as the user create more value for company using a BozoPad on my FanPhone, then I challenge IT to make this happen.

      Example of BYOD lowering costs from the real-world: world-wide sales team work on devices of their choosing, software either provided by Corp. when bulk purchases make sense or individually expensed (OpenOffice, MS Office, Apple Pages, you choose). Corp IT only provides a vendor-neutral, standards compliant back-end for all clients to be able to connect (IMAP, POP3, and the like). Local IT Support (my laptop is broken, how do I configure X?) is done by local IT shops (think Apple Genius bars, and the like).

      That gives you staff who can get support 24x7 in almost any city in the world, caring about "their" computers, and enjoying how they work. That's 300 odd employees scattered around the globe supported by 2 IT people. And everybody is happy.

      Reading your post has me thinking of the Corp. IT issued laptops that run outdated software (XP with IE6 anyone? Outdated Flash or Java...), field staff that are crippled because they are not admin (need to add a local printer, sorry, only admin gets to install the fancy driver). The web is filtered to protect staff from the likes of WebEx. IT Support are either a help desk of a dozen low qualified interns, or asleep when you call at 3 in the morning.

      Sorry, BYOD is not a fad.

      You can either fight it and resist until you are obsolete, or adapt and become a leader that gives your business the edge. The technology is ready - what needs work are the internal application policies that are compatible with law and the users' expectations.

      1. Ben Tasker
        FAIL

        Re: Responsability

        Your are not there to serve your interests but those of business and the users. IT is not a end, but a means.

        If I as the user create more value for company using a BozoPad on my FanPhone, then I challenge IT to make this happen.

        Bang on the nail, and in that situation you'd be correct. However, what IT also has to assess is the cost/benefit of BYOD versus the more traditional methods. If the extra measure that need to be put in place are going to cost more than the bigger bosses will authorise, then it ain't going to happen without a very good case being put forward - and "The users will be more productive on their own kit" does not make a strong business case.

        Some businesses, BYOD works really well. Other's it doesn't. What some users seem to miss is that different businesses are, well, different. Just because it works for Company A, doesn't mean you in Company B are entitled to the same. Conversely it not working for Company B doesn't mean it can't work for Company A.

        The web is filtered to protect staff from the likes of WebEx

        Of course the web is filtered, you're on a work connection. The business wants to keep malware of it's network, and most will take steps to block 'offensive' content too. It's called being in the workplace.

        field staff that are crippled because they are not admin

        Only give users the privileges they need regularly. That's security 101 for fuck sake.

        Did you perhaps get to use a PC in the summer holidays? Because you seem to know fuck all about security in a corporate environment. Hell the only reason I'm bothering to respond is because I'm an Insomniac so have a good proportion (if not all) of the night to waste

      2. Ben Tasker

        Re: Responsability

        Corp IT only provides a vendor-neutral, standards compliant back-end for all clients to be able to connect (IMAP, POP3, and the like).

        Incidentally, companies have had this for years before BYOD even came up. It's not external connections in that are a problem, you can filter them to hell, restrict what they can access on the server etc.

        It's when users want to plug their malware infested devices into the LAN or connect to the WLAN that's the issue with BYOD from a basic security PoV. Unless, of course, you think running a VLAN for each client is fun.

        Reading your post has me thinking of the Corp. IT issued laptops that run outdated software (XP with IE6 anyone? Outdated Flash or Java...)

        That does suck, no disagreement there. On the other hand, it is a work computer and if the business has decided IE6 is all you need then that's what you get. You should of course raise hell about it where IE6 is involved.

        The web is filtered to protect staff from the likes of WebEx. IT Support are either a help desk of a dozen low qualified interns, or asleep when you call at 3 in the morning.

        Budgets are often cut, perhaps if the helpdesk had a few less qualifications between them IT could afford to buy you the Alien laptop you'd prefer. Of course, the support would be worse, but you'd have better kit. Addressing a balance can be difficult, and very few businesses get it quite right.

        The technology is ready - what needs work are the internal application policies that are compatible with law and the users' expectations.

        Sorry but user expectations don't factor in, business needs do (and that includes the law and regulatory compliance). Users' expectations don't take into account things like law, budgets, scope for expansion, ongoing support costs, licensing costs etc. Nor should they have to, it's not their job.

      3. Captain Underpants
        Thumb Down

        Re: Responsability

        @AC 22:48

        There's a crucial point you've missed here that undermines your logic.

        IF I as the user create more value for company using a BozoPad on my FanPhone, then I challenge IT to make this happen.

        Where's your statistically validated proof that you are in fact creating more value for the company by using a BozoPad on your FanPhone? Because, in the absence of any evidence, I'd say it's equally possible that when using a BozoPad on your FanPhone you're not in fact more productive, you're just putting in more hours working offsite/at home because doing work on your own personal device doesn't really register as being "work" (because since it's a personal device you can switch to a browser to check Facebook/El Reg Forums/Slashdot etc) in the same way.

        There are certain fields where workers can in fact be more efficient using their own gear, but without evidence there's no reason to assume that this applies across the board - and given the additional administrative burden that encouraging such use will place on IS/IT (whose role is to facilitate people's revenue generating activities) a healthy skepticism is rarely a bad place to start such evaluations. Don't let that stop you from being an evangelistic retard, though.

      4. Rob Moir
        Facepalm

        Re: Responsability

        "Your are not there to serve your interests but those of business and the users."

        No. Both myself and the users are employed to serve the needs of the business.

        If you create more value for the company using a BozoPad on your FanPhone, then you should be challenging the business as a whole, not just IT or HR or whatever to make it happen. Because just as its ignorant for people to ignore the potential benefits of BYOD, its equally ignorant to ignore all the potential costs.

    4. Charles 9

      Re: Responsability

      When the demand for BYOD comes from down below, that is easy to enforce, but what happens when the demand comes from UP TOP and over your head?

    5. Ian Johnston Silver badge
      Thumb Down

      Re: Responsability

      If you are only looking after workers who run a clearly defined set of software in the office only then I suppose your plan might work.

  7. Christian Berger

    In a few years...

    ...we will see this as just a big mistake as desktop PCs.

    So what I would recommend people to do is to simply use such devices as "dumb" terminals. For example run Web-services or even VNC/RDP to a local server running the software you need.

  8. Anonymous Coward
    Anonymous Coward

    Why does it have to be BYOD,...

    why not just offering employees some choice when it comes to their tools? IT departments could offer some range as to what devices they are willing to support, and let employees have some choice. This might bring the increase in employee happiness and productivity while maintaining full control by the IT department over the devices in question.

    And often enough it might help if employees wouldn't be presented with technology from yesteryear just because IT couldn't be arsed to make their infrastructure flexible enough for a world where technology changes quickly.

    1. Christian Berger

      Re: Why does it have to be BYOD,...

      That depends on the actual relative IT competence levels between IT and the user.

    2. Captain Underpants

      Re: Why does it have to be BYOD,...

      I think it also depends on the degree of divergence between what the employee thinks they should have/be able to do with their work-provided tools and what the business has decided they require to fulfil their paid-for function.

      There is no constant across all industries for how often a new machine is required for actual work purposes (as in, not the "look at us, we're so up to date we all use the latest iThingies" sales pitch requirement but actual "My job involves doing X in Environment Y and I need a machine less than 2 years old to be able to install and use Environment Y" requirement).

      Assuming that "but I want it" is a valid reason for the business to provide it is exactly as silly as assuming that the business can and should just keep on using an IE6 only web portal for some crucial productivity task.

      1. Christian Berger

        Re: Why does it have to be BYOD,...

        Well what we could learn from this would be to finally switch over to open standards where it doesn't matter what you use, and you can use the best tool for the job and switch tools even if one gets better. However if you have an IE6 only web portal chances are that's harder to do than keeping some Windows XP virtual machine running for the next 50 years or so.

  9. Anonymous Coward
    Thumb Down

    If Emplyer wants staff to use machines...

    They can damn well pay for them.

    1. nematoad
      Unhappy

      Re: If Emplyer wants staff to use machines...

      In all the places that I have worked in desktop support that's exactly what they did do. That way only tested, approved software is loaded onto the machines with an extremely complex and time consuming process if anyone wants anything outside the SLA

      If people want to BYOD and run it at work then it should be made crystal clear that if anything goes wrong then they pay to clean up the mess, and if that means that a cost centre picks up the bill for a virus outbreak then so be it. That way it might make the budget holders in the company really put their foot down and stamp out this pernicious practice.

  10. Shonko Kid
    Trollface

    "cheers up staff" ... "IT bosses hate it"

    Any possible causal link perchance, perhaps Simon might like to comment?

  11. djack

    Security is the key

    For BYOD to work, the company has to ensure that company data is kept securely and cannot be misused or lost or exposed to malware on the device.

    The only way to come anywhere near the required level of confidentiality and security of company data is through lock-down software on the device that will enforce :-

    * Encryption of data.

    * Reasonable level of authentication to get access to the device after device lock or power on.

    * Automatic device lock after a (short) period of inactivity.

    * A whitelist of approved software (no downloading and running of arbitrary 'apps' from the store)

    * Monitoring of usage of the device.ngs aren't secure enough for company c

    * Ability of company IT to wipe the device in case of compromise.

    * Device will be wiped when employee leaves the company.

    Without these restrictions, there is a significant risk of exposure of company data. When these restrictions are spelled out, no employee in their right mind would submit to them and no-one would want BYOD.... win-win!!

    1. Neil Greatorex

      @djack

      Had my response ready, can't be arsed now. You. Sir; are a Prawnus Maximus....

      What a specious argument.

      1. Ben Tasker

        Re: @djack

        Let's accept the superficially plausible bit of specious a minute. What was wrong about what he said?

        The only area I can see is that possibly some users might be willing to submit to all those restrictions.

        The rest of the post is just sensible security precautions when dealing with sensitive data, or will you not mind when your banking details are left on an iPad on a rush hour train by accident? Most companies deal with data that's sensitive in some form, whether commercially or under the DPA, so steps have to be taken.

        1. Khaptain Silver badge

          Re: @djack

          Djack has basically specified what we find on any Blackberry that is connected to BES with a reasonable security policy applied. Its exactly the scenario applied to our BBs.

          We have a short timeout period which is a pain but if you lose your BB you can be pretty much garanteed that it will be locked before anyone has the time to do any damage.

          In a corporate environment Djacks specs are an extremely reasonable set of expectations.

          1. Ben Tasker

            Re: @djack

            Just for the record, they also match quite closely to the specs enforced (by default IIRC) to a mobile device linking to Google Apps for Domains.

  12. ChrisInBelgium
    Coat

    Of course

    >>when better tools emerge to lock down devices and make them more interoperable

    Naturally, "lock down devices" is always the first and most important brainwave for these guys. The job is only done when your device is totally and utterly useless.

  13. bazza Silver badge
    Mushroom

    Undue optimism

    Companies that don't take security seriously generally discover their mistake only after their business has been destroyed. Letting jail-breakable mobiles on to a company network means running a risk, and it's "are you feeling lucky, punk?" time. Afterall, you can't guarantee that none of the staff will do something stupid...

    1. Ben Tasker

      Re: Undue optimism

      If it's a largish company, it's probably fair to say that, given enough time, without restrictions you can guarantee that at least one of the staff will do something stupid.

  14. Anonymous Coward
    Anonymous Coward

    BYOD vendors

    Does anyone know how many of these BYOD vendors themselves have BYOD implemented in their own offices? I know of one which cries itself hoarse through BYOD marketing but has not let it's own employees do BYOD.

  15. Arrrggghh-otron

    Small steps...

    I kinda offer access for BYOD and have done for a long time. If users want internet access on their smart phone/tablet etc while at work, no problem, I'll add your device and give you a password. That connection is filtered and isolated.

    If you need access to corporate email, then I will enable access and happily supply the details you will need to set that up. This however usually results in "How do I set that up" to which I can either give them pointers as to where the settings are likely supposed to go or I can't as I haven't a clue as I've never tried setting up email on $device before. Sometime this results in repeated whiney phone calls that ultimately end up with me googling for the setup details or the device mysteriously appears on my desk - presumably for me to configure. Sometimes ending in having to explain that it can't be done but they can access webmail instead. Cue more grumbling.

    If a user really needs external access then they are given the VPN details. This is usually pretty much a repeat of above with the added joy of the discovery that they can't access their docs as their mapped network drive is no where to be seen and "why can't you fix it"... even when they can get access they don't usually have the right software installed. If the software even exists for that platform, we (the company) aren't buying it for their device. It is just easier to explain how to access their corporate desktop remotely... if possible, from their device!

    On top of all that you get the calls of "well it was working until you gave me $details!". I do try and fix their problems. I don't consider it part of my remit to look after their personal hardware but I am the one to has to listen to the whining... but when they don't even know their own personal account log on details, for the accounts they set-up themselves, it does make you wonder...

    All of that said, there are users who know what they are doing and can set up their own devices with the information I give them. To those users I am grateful that you know what you are doing, that you don't expect me to know everything their is to know about the nice shiny new toy you have, the shiny new toy that I have never used before, that I can't afford to buy along with all the other shiny new toys everyone else has.

    1. Frank N. Stein
      Pint

      Re: Small steps...

      Who really needs 24/7 access to corporate e-mail besides execs or sales people? If they aren't in sales or an exec with a corner office and a cute young assistant, then they don't really need 24/7 access to corporate e-mail. Do yourself a favor and deny them access to personal devices and don't support them. That way, they can work from their desk computer and if they want to work approved over time, let them, if it's in the budget. Otherwise, you're opening a can of tech support worms that will send you to the pub regularly for all the wrong reasons.

      1. Arrrggghh-otron

        Re: Small steps...

        Email is by the by for most people - just a nice to have for those than want, and those that want are usually the execs/senior managers. However, I work for a 24/7 operation. Admittedly it is usually quiet at night*, but if the execs/senior managers get calls at night, then them being able to VPN from whatever device and see what is going on usually avoids my phone ringing.

        *The quiet time setting on Android is my favourite ever setting.

  16. coderguy
    Stop

    If an employer allows BYOD, how exactly does the employer handle data privacy and security. The way I see it, if personal data is transferred away from the company (in this case, a personally owned device that can potentially be seen by someone outside of the company), shouldn't data protection come into force. Including the large fines that were threatened after the CSA, and HMRC data losses?

  17. Anonymous Coward
    Anonymous Coward

    We need bullets.

    I can see it makes sense at some stage in the future once the topology of networks is changed and we can health check hardware security and configuration on the run but right now its a bloody nightmare.

    It's too simplistic to think it's manager being Anal that won't allow uptake, that's like criticising your boss for not allowing Russian roulette in the canteen.

    I know having the wrong tools for the job or not embracing the right technology limits the user dramatically (I've drawn electronic schematics in Autocad 14 without any existing symbols because the boss didn't believe in free schematic capture).

    Moving technology forward, increasing engagement and resulting efficiency is great but these uncontrolled devices shoehorned into existing network security models is madness IMO.

    Dropbox et al, IPV6 and others are breaking the current models so we need to redesign access methods, topology and security checks. As part of that rework design-in BYOD options so we can see if the vociferous proponents of the technology actually do suddenly become happier in their job and more efficient.

  18. Sirius Lee

    Another Reg article banging on about BYOD

    I don't care where younger worker prefer using their own devices. It's not their company, not their data and not their responsibility. That belongs to the directors. Until that changes BYOD will have absolutely no place in the workplace.

    The article expresses the hoped for dream that 'security' will improve. No it will not. There is no evidence that hacking is any more difficult today than it was yesterday. That's because the weak points - you and me - are unchanged. Until we evolve some appropriate characteristics (a compulsion to snitch on our own bad behavior perhaps) we will be the constant weak point.

    And anyway, it's not my experience that staff want to use their own kit. Sure the fanbois may have the latest and greatest but that's a tiny minority. The rest want to spend their cash on more fun stuff and let the company pick up the tab for workplace essential kit - which is very often better.

    So, to The Register: leave it alone - there is no case. Apple and the rest will just have improve their products and make them enterprise friendly. No amount of pushing against the backdoor is going to let them in until then.

    1. Charles 9

      Re: Another Reg article banging on about BYOD

      But like I asked before and never got an answer, that's assuming that the BYOD push comes from the BOTTOM. What if it comes from the TOP? From the CEO or other people who can basically say, "Who hired this idiot?" and actually be able to do something about it?

      Remember it's only "security" until the boss is inconvenienced.

      1. Captain Underpants

        Re: Another Reg article banging on about BYOD

        It doesn't come from the top.

        Why, you ask?

        Because the people at the top are already in a privileged position where they can dictate:

        a) what kind of device they use (eg I don't care how expensive it is, I'm having a 13" MacBook Air with the biggest SSD available, and not some crappy underspec'd 15" Windows laptop)

        b) what level of support they get (eg they and their PA will be listed as VIPs in the support system and be prioritised when calls are raised)

        c) whether they get to use it as a hybrid work/personal machine (eg "I know it's not policy but I'm installing personally licensed software from my iTunes account, along with my music library, and that's that").

        The only way those at the top find BYOD interesting is the "Buy Your Own Device" angle ie reducing the IT inventory spend. Generally they'll eventually change their mind when they become aware of the additional costs and overheads involved in properly supporting a fully-BYOD environment (additional licensing expenditure, increased security oversight required to reduce risk of "Data Gone Walkies" incidents, increased lead time on hardware-based support calls due to crap consumer-grade warranties rather than enterprise-class on-site support, greater variety of OS and software fauna to be supported, and that's before you even reach the Data Protection minefield that is trying to not breach someone's right to privacy on their personal machine while attempting to eg help them identify the source of a system performance problem and/or virus outbreak...). Needless to say, this awareness may in fact only come about several years after they push through a BYOD policy, at which point they would likely blame someone else for not explaining/predicting this ahead of time...

        1. Anonymous Coward
          Anonymous Coward

          Re: Another Reg article banging on about BYOD

          "The only way those at the top find BYOD interesting is the "Buy Your Own Device" angle ie reducing the IT inventory spend."

          Buy your own device and pay for the data/calls seems to be the favorite. I worked for one company that didn't have any phones on the desktop and didn't supply mobiles to lower grades or contractors either. that finally finished when there was yet another case of no-one off site dialling in to a conference call as they refused to pay for it on their personal mobiles.

          Of course they COULD claim it back, but only if they submitted a copy of the bill with the work calls and the attendant costs highlighted. Most contract mobile bills won't show the cost of a call until after the monthly limit is reached, so they were told they couldn't claim!

      2. Frank N. Stein

        Re: Another Reg article banging on about BYOD

        No one at the top cares for the opinion of those at the bottom. But how do you think all those iPhones and iPads made their way into corporate environments? Someone at the exec level insisted that theirs be set up on the corporate network. Having an exec connected to the network on personal devices makes sense. Having desk workers who have 9 to 5 desk jobs be connected 24/7, makes no sense at all, if they aren't in sales or an exec at the top level of the corporate food chain.

      3. Sirius

        Re: Another Reg article banging on about BYOD

        In my experience there is nothing you can do - you just have to try to explain the potential problems and then go ahead and do as you are asked. I suppose in the end it is the high-up people who will have to take the flack when/if data goes missing, so perhaps they feel it's worth the risk.

  19. Anonymous Coward
    Anonymous Coward

    BYOD - Bring Your Own Disaster

    Fricking nightmare. Letting users pwn their own pc and then bring it into the office.

  20. Anonymous Coward
    Anonymous Coward

    "how exactly does the employer handle data privacy and security"

    "If an employer allows BYOD, how exactly does the employer handle data privacy and security"

    Probably just as badly as most do today.

    As part of my work, I occasionally use Wireshark to analyse malfunctioning communications between a piece of PC software and a variety of strange and wonderful automation devices.

    The stuff that comes down a supposedly ordinary end user network port on an allegedly correctly configured enterprise switch is breathtaking sometimes, even more so on the odd occasions when I forget to deselect "promiscuous mode".

    BYOD in this environment would be interesting. Obviously the IT department couldn't possibly be in the wrong, never mind incompetent, it would be the sniffer user that was breaking the local policy that was in the wrong. Dishonest people never break thepolicies/rules,do they.

  21. Frank N. Stein
    Pint

    BYOD?

    I've always carried my own mobile phone. I have neither the need nor desire to receive company e-mail on it, nor do I have any need to connect it to the company network, therefore, the IT Dept. has no say in me bring my phone with me on the job or anywhere else, and I'm certainly not allowing them to touch it any do anything to it, "lock down" or otherwise.

  22. Frank N. Stein
    Thumb Down

    Another thing...

    The other point that may be missed in all this, is that an employer who's all to willing to allow you to connect your device to their network, may wish to spy on your personal activities and use that as an excuse to fire you, should some form of "budget cuts" or "cost cutting strategy" be necessary at the company. Don't think so? This is why employer's are so interested in your Facebook and Twitter details and encourage employees friending each other on social networks. Some may think it paranoid, but I've seen friends and strangers alike, fired over Facebook posts that the company did not like, an opinion expressed that they didn't support, or some post that someone assumed to mean one thing, when it meant something else entirely.

  23. Anonymous Coward
    Anonymous Coward

    BYOD = Compliance headache

    The firm I work for sends and recieves data from national/local govt. One very important sentance in the ompliance docs is "the data must be held on a system that is under the full control of the organisation." How will BYOD square with this?

    BYOD: like repainting your own office out of your own pocket.

  24. Christian Berger

    Who is the Y in BYOD?

    That's actually a serious question. By now many mobile phone companies want you to sync "your" devices with their servers. Often they limit the software you can install or even reserve the right to delete just about anything from your computer.

    I mean who's responsibility is is when the maker of the phone makes a mistake or even acts malevolent?

This topic is closed for new posts.