Is it simple? No. But containerization is a critical approach to BYOD security. For a short and very enjoyable history lesson, watch this Youtube video. It’s the story to a 1930s-era truck driver named Malcom McLean, who tired of sitting in the shipping port for days, waiting for dock workers to unload bales of cotton from his truck. This delay cost him money. McLean had the idea of simply hoisting the entire truckload onto the ship in one fell swoop. This insight ultimately lead to the modern “containerized” approach to shipping. Pick up the whole container and plop it on the ship! Simple, yes? Well, no. It took another couple of decades before McLean actually implemented his idea. He had to design the container itself, which was different from a conventional truck trailer of the day. And he had to build an entire ship with a stronger deck to bear the load of stacked metal containers. Because of difficulties of this sort, a lot of people thought McLean’s idea was crazy. [Also see With BYOD, data breaches just waiting to happen]As part of our CSO Perspectives series of one-day events, we recently convened a panel of CISOs in Boston to talk about securing mobile computing. One of our esteemed panelists said his company, to deal with the demands of bring-your-own-device (BYOD) movement, is taking the containerization approach. The smartphone or tablet is regarded, for security purposes, as untrusted. Users can do more or less as they like—they own the devices, after all—but corporate apps and data and network access are isolated from whatever else is on the phone or tablet. Containerized. Simple, yes? I asked the panelist about how off-the-shelf his containerization strategy was. “Not very,” was the reply. And indeed, as in McLean’s day, the simplicity of the idea conceals a lot of technical concerns. Controls can be implemented at the OS level, the hypervisor level, the application level& (For more about different approaches to containerization—without too much head-spinning technical detail—check out this useful blog post from Fixmo: http://fixmo.com/blog/2012/05/11/mobile-device-sandboxing-101.) For all the challenges and decisions, though, containerization still looks like a mission-critical concept for the mobile and BYOD era. Related content feature How cybersecurity teams should prepare for geopolitical crisis spillover CISOs can anticipate and prepare for cyberattacks conducted by participants in geopolitical conflict such as the Israel/Hamas war by understanding the threat actors' motivations and goals. By Christopher Whyte Dec 05, 2023 12 mins Advanced Persistent Threats Advanced Persistent Threats Advanced Persistent Threats news analysis P2Pinfect Redis worm targets IoT with version for MIPS devices New versions of the worm include some novel approaches to infecting routers and internet-of-things devices, according to a report by Cado Security. By Lucian Constantin Dec 04, 2023 5 mins Botnets Hacker Groups Security Practices news Hackers book profit by scamming Booking.com customers Malicious elements are using Vidar infostealer to gain access to Booking.com’s management portal and defraud customers. By Gagandeep Kaur Dec 04, 2023 4 mins Cyberattacks opinion Proactive, not reactive: the path to ensuring operational resilience in cybersecurity The experience of the financial sector in dealing with threats is instructive to anyone in the cybersecurity space — there’s no substitute for getting out ahead of potential risks and problems. By Cameron Dicker Dec 04, 2023 6 mins Financial Services Industry Data and Information Security Security Practices Podcasts Videos Resources Events SUBSCRIBE TO OUR NEWSLETTER From our editors straight to your inbox Get started by entering your email address below. Please enter a valid email address Subscribe