Integrated corporate network service architecture for bring your own device (byod) policy

Abstract

As consumerization of Information Technology occurs, Bring-Your-Own-Device (BYOD) policy is becoming increasingly popular in Corporate Mobility, where organizations allow personal devices to access corporate networks and their services. However, unlike the organizationcontrolled devices, the personal devices pose a threat to the organization’s information resources due to relaxing of access policies to be adopted allowing personal devices to access the networks. This becomes increasingly a challenge for medium scale organizations due to their cost reduction initiatives and inability to implement costly security solutions. Thus, we introduce a network solution for successfully implementing BYOD policy of an organization that allows it to gain complete manageability of access to organization resources and implement policy decisions at both network and individual device level. An organization can create groups of BYOD policies and apply those policies to different containers of mobile devices for controlling and managing mobile devices both online as well as offline. Unlike other solutions, our solution enables applying rules based on individual user, groups, divisions, and device at the network access level by identifying the ownership of individual datagrams; yet can be implemented on an existing operational network without disruptions. The solution architecture includes Mobile Device Management Server architecture and network Access Control Service Server architecture. The complete design of the solution and the future directions are presented.