We already have a login page to authenicate users, so now the first action we want to implement is a way for users to create a new work order.  This is a very basic form with just a few fields, but you can always add your own fields to fit your needs.  You can enter [...]
Maximo Times

OK let’s face it, we all know we don’t like the new default skin for Maximo 7.5 because it looks cartoon-ish but there is a way for you to change it back to the classic version.  You can also change it globally in your maximo.properties file.  But did you know there is another skin for [...]
Maximo Times

I am starting a mini series on building a mobile friendly app for Maximo.  This will be a lightweight mobile framework so it won’t be as powerful as our own EZMaxMobile, but it’s something that you could possibly use in a small scale deployment.  This is just my experiment but my goal for this series [...]
Maximo Times

Are you attending IBM Pulse 2012?  Are you looking for a mobile solution for your business?  Then stop by this session to see how USAA stopped syncing their mobile devices and started using real-time connectivity with EZMaxMobile to improve stability and lower failure rates. Session Details: 1120 Release the Beast: How USAA Went on the [...]
Maximo Times

Denim Group Expands Software Development, Mobile Application Security Assessments and Developer Training to Mobile Platforms

San Antonio, Texas (PRWEB) November 14, 2011

Denim Group, the leading secure software development company, today announced it has expanded its services to the mobile arena, now offering secure software development, mobile application security assessments and developer training to help make mobile devices a more trusted platform for business and e-Commerce. Mobile applications offer a unique challenge to security in that a single application involves dealing with native code, web services as well as complex application programming interfaces (APIs). In addition, mobile devices provide capabilities unavailable on the desktop or laptop. As a result, there are risks specific to mobile applications that are significantly different from web application environments, and must be dealt with appropriately.

“The importance of the mobile market is clear as not only have mobile device shipments soared beyond PCs, over eight billion mobile application downloads occurred in 2010 alone, and are predicted to increase exponentially, however, there are significant security concerns because mobile applications can be manipulated to reveal sensitive data if they are not built correctly,” said John Dickson, Denim Group principal. “Denim Group is offering software development, security assessments and developer training services focused on overcoming the unique challenges of the mobile platform to address those concerns and help advance development of secure mobile applications across the industry.”

Smartphones and tablet platforms have capabilities beyond that of the typical desktop because of the integration of technologies such as cameras, GPS locators, and audio recorders as well as network resource access, allowing organizations to build innovative applications that deliver unique service solutions to both customers and employees. However, these capabilities create additional security risks because as sensitive data and operations move from servers to mobile devices, there is a greater opportunity for data breaches and the exposure of other security vulnerabilities.

The issues enterprises must address when deploying custom mobile applications include protecting sensitive corporate data on devices that are prone to loss or theft. Even encrypted data on devices may be at risk because of application key handling and data storage issues. In addition, the open networks mobile devices use to communicate are often unencrypted, making that data subject to capture as well. Relying on the security of the mobile device to protect the server-side assets is a mistake many application developers make. However, network services deployed to support mobile applications without server-side protections such as authentication and authorization present attractive targets for exploitation by malicious attackers. Finally, mobile applications can be reverse engineered to reveal private client information or corporate credentials on those devices, forcing the application to unintentionally expose sensitive corporate information.

Denim Group’s new services are intended to help organizations building and deploying mobile applications for their customers and employees to proactively address these associated risks. Practices such as integrating threat modeling into the software development lifecycle can help to identify potential issues during the design stage of application development and minimize costly post-deployment remediation. Security testing for mobile applications and their server-side infrastructure is also an important check to ensure security efforts during the application’s design and development were successful.

In an additional announcement today (see Denim Group Launches Industry’s First Secure Mobile Software Development e-Learning Courses through ThreadStrong), Denim Group also announced the industry’s first e-Learning courses designed to teach developers how to secure mobile applications. Taught through its ThreadStrong Learning Management System (LMS) – compatible program, Denim Group’s training can be particularly valuable for mobile application developers who may not be versed in secure design and development practices and may also be creating applications for unfamiliar platforms with unknown security characteristics. The Overview of Mobile Application Security class familiarizes new students with the challenges specific to the mobile platform. Supplementing the introduction are two initial classes focused on Authentication and Authorization for the Android OS and the iPhone OS platforms. Denim Group will be adding additional in-depth secure mobile training classes in the next few months.

In addition to e-Learning for mobile, ThreadStrong offers a variety of secure application

programming courses that cover topics such as Secure Coding for Java and .NET applications, Threat Modeling, Software Security Remediation Basics as well as a publicly free class explaining Cross-Site Request Forgery (CSRF). Denim Group also offers public classes and instructor-led training, as well as in-house mentorship services.

Denim Group’s services are based on its experience assessing and building mobile applications for a variety of industries and its methodology uses emerging industry standards such as those defined by the Open Web Application Security Project (OWASP). These capture the major classes of vulnerabilities and weaknesses that might exist in systems incorporating mobile applications. In fact, Dan Cornell, leading technologist for Denim Group, is spearheading the platform-specific guidance section for OWASP which will produce detailed information on how to handle the security issues for specific mobile platforms. Additionally, Denim Group examines security risks and usability weaknesses that are common in a mobile computing environment, including, but not limited to the system’s application permissions model, encryption APIs and hardware-supported encryption capabilities as well as the security of network communications and data transmissions to name a few.

Denim Group has identified the likely threat agents and vulnerable components associated with specific application classes to produce a holistic structured view that enumerates possible areas of weakness. Every application is built or assessed with a dataflow diagram, a list of identified threats, detailed countermeasures for these threats, and any areas where additional security measures should be considered kept in mind. Automated source code scanning and manual source code review are used to ensure the security state of the mobile application as well as its associated services. Additionally, Denim Group performs manual security testing of the web services supporting an application. This testing simulates the activities of an attacker who would bypass the mobile application client to attack web services directly as well as attackers who could gain access to user devices in order to try and recover sensitive data stored on the device.

Denim Group’s services are designed to ensure the additional layers of security and access control needed are built into the mobile applications developed for leading mobile device smartphone and tablets including the Android, Blackberry, the Apple iOS and Windows Phone 7 operating systems. While increasing confidence in mobile business, banking, e-Commerce and data access is critical, enabling a seamless mobile application user experience is just as important to ensure corporate resources are protected from unauthorized access without any usability impact to the end user. Denim Group’s suite of services enable organizations to address security concerns for mobile applications in a proactive manner to reap the benefits of creating new and innovative applications without exposing the company’s assets to undue risk.

About Denim Group

Denim Group is the leading secure software development firm. The company builds custom large-scale software development projects across multiple platforms, languages and applications. What makes Denim Group unique is that the company brings significant core competencies in software security to the table, offering an innovative blend of secure software development, testing and training capabilities that protect a company’s biggest asset, its data. Denim Group customers span an international client base of commercial and public sector organizations across the financial services, banking, insurance, healthcare and defense industries. Its depth of experience building large-scale software development systems in a secure fashion has made the company’s leaders recognized experts in their fields. Denim Group has been recognized as one of the 5,000 Fastest Growing Company’s by Inc. Magazine several years in a row, and has won multiple awards including its recent accolades as one of the best places to work in San Antonio. For more information about Denim Group visit http://www.denimgroup.com

###

©Copyright 1997-

, Vocus PRW Holdings, LLC.
Vocus, PRWeb, and Publicity Wire are trademarks or registered trademarks of Vocus, Inc. or Vocus PRW Holdings, LLC.

Related Enterprise Asset Press Releases

The need for a barcode scanning solution with any Maximo mobile solution is a must for any organization to keep track of their assets.  It makes collecting asset information and creating workorders much easier when you can scan and search for an asset in Maximo with a click of a button. That is why EZMaxMobile [...]
Maximo Times

Sometime ago, I wrote an article about making sure the selection of EAM mobility options took into consideration durability, reliability, ease of use and the technology platform. Now, a recent study by the VDC Research group provides greater detail why understanding mobile device TCO is critical to maintenance operations as well as achieving the ROI for your investment in an EAM system.

Defining TCO for Mobile Handheld Device

Most enterprise asset managers are aware that consumer grade mobile devices such as smart phones, PDAs etc. cost less than commercial/enterprise grade mobile devices. However, the purchase price is not the only factor that should be considered because the Total Cost of Ownership (TCO) averages 42.6% more for consumer grade mobile devices.

To understand why the TCO is so much higher for consumer grade mobile devices you first need to understand the components of TCO. TCO for mobile devices is composed of hard costs and soft costs. Hard costs generally include the purchase price and cost of maintenance contracts. Soft costs include support time, lost productivity and device maintenance.

“Replacement costs only tell a small part of the TCO story because the purchase price of a device accounts for less than 30 percent of its total cost of ownership. Lost productivity when devices fail costs businesses more than the price to repair or replace them.”

Source: Intermec

The VDC Survey reports that when hard and soft costs are added together, consumer grade devices have a TCO of $ 3,895 versus commercial rugged devices which average $ 2,730. The reason for the variance can be attributed to the failure rate of non-rugged consumer grade devices which fail on average 3.5 as many times as their rugged counterparts.

Ruggedness Makes a Financial Difference

Ruggedness/durability represents the ability of mobile devices to withstand shock, water, dust and use damage. True rugged and durability ratings can be found on commercial devices that describe their Ingress Protection (IP) rating. IP ratings are used to define certain levels of ruggedness and durability. For example, no warehouse or distribution center should be using a mobile device rated less than IP54. In another example, Mintek just set up a client in a Port that required a IP rating of 67 for their handheld devices.

Every time a device fails, is taken out of service to receive a software update or replaced is lost productivity. According to the survey, on average mobile workers lose 75 minutes each time there is an issue with their mobile device. How many inspections or preventive maintenance tasks can be accomplished in this time?

“Device failure remains a critical issue for mobile computers with annual failure rates often exceeding 30 percent….Lost productivity is responsible for nearly half of the total cost of ownership for mobile devices, and a variety of other factors account for the other half.”

Source: Intermec

The Software and Support Difference

The second highest soft cost for mobile handheld devices is the costs of software and support. As described in our prior post, consumer grade mobile devices don’t last long if used in commercial applications. In addition, smart phones and PDAs etc. are often discontinued which can leave organizations trying to manage, update and support various brands and operating systems.

Other TCO factors

TCO factors may vary by industry such as manufacturing, cable or retail as each industry has different applications. However, in general other TCO factors include but are not limited to:

• Lost revenue: Dissatisfied customers waiting for inventory, price and services checks may go away should the mobile devices fail.
• Ease of use: Commercial mobile devices are usually optimized for screen input, bar code scanning and navigating enterprise applications.
• Power management: Cell phone batteries last only a fraction as long as commercial grade handheld devices.
• IT support: Commercial grade handheld devices are designed interface with EAM applications, requiring less IT support, can be accessed remotely and can be set to prevent unauthorized uses (data and non-business use).

In summary, failure to pay attention to TCO for mobile handheld devices may cost an organization 2-3 times more per device than they planned. Just like the concept of preventive maintenance, you can pay a little more now or a lot more later. Most importantly, the use of poorly constructed mobile devices work against the labor cost savings that an EAM system will bring.

Tell us your experience with different mobile handheld devices. If you liked this article you may also want to read:

• The Roles of an EAM in Asset Lifecycle TCO
• How Mobile Devices Increase Adoption Rates of CMMS
• Replacing Hand Holding with Handhelds For Your EAM

Enterprise Asset Management 101

Getac X500 is a rugged laptop for extremist. This is a military-grade laptop equipped with the most up-to-date hardware. Read the press release below. [Getac via Gizmodo] GETAC INTRODUCES FLAGSHIP X500 RUGGED NOTEBOOK COMPUTER Getac’s Most Powerful Rugged Notebook Computer Combines an Intel 2.66 GHz Core i7 Processor with Advanced Graphics, Flexibility and Customization, Providing [...]
Maximo Times

Maximo Everyplace is only available for Maximo 7 and it’s a mobile solution that works with iPad and iPhone.  The way it works is this.  You have to buy the mobile solution from IBM and then you have to basically duplicate all of your application, such as Work Order Tracking and use the application designer [...]
Maximo Times

Fluensee AssetTrack 4.0 Provides On-Demand, Real-Time Asset Inventory New Release Integrated with Google Maps to Extend Visibility to Mobile Fleets and Assets

Denver, Colorado (PRWEB) February 10, 2009

As part of its strategy to continually enhance its comprehensive RFID-enabled asset management software platform to all types of enterprise assets, Fluensee today announced the availability of AssetTrack 4.0, which introduces enhanced features such as on-demand, real-time asset inventory and integration to Google Maps that extends visibility beyond the enterprise to mobile inventory and assets.

Built upon patent-pending locationing technology, AssetTrack 4.0 is 100% browser-based, which allows organizations to use a single platform to better locate, monitor and manage all types of critical enterprise assets (IT and data center assets, tools, lab equipment, high-value inventory, furniture, vehicles, etc.) across multiple locations in various cities. AssetTrack provides customers with better visibility, tracking, security and utilization of their assets, using all types of automatic identification technologies (active or passive RFID, GPS, sensors or barcodes) from any manufacturer. This flexibility allows customers to invest in data capture technologies available today, knowing that their asset management platform will support the emerging technologies of tomorrow.

“Based upon experience we have gained from successful customer implementations in data centers, brewing, manufacturing and transportation, we have built new tools that extend real-time visibility of enterprise assets beyond client facilities to their mobile fleets as well,” said Tim Harvie, president and chief executive officer of Fluensee. “In today’s economic climate, organizations must do more with the assets they already have, so implementing a solution like AssetTrack 4.0, which typically delivers a return on investment within six to eight months, gives companies a better way to locate, secure, plan and manage all enterprise assets in real-time.”

Key new features and functionality of AssetTrack 4.0 include:

Integration to Google Maps

With the new Google Maps functionality, clients using AssetTrack 4.0 can find the exact location of their moving assets. Using the appropriate automatic identification technology, customers can receive data about a particular asset and AssetTrack 4.0 provides its detailed map location. The application also lists alerts associated with the assets on the map, and lets the user know about asset status and condition. Integration to Google Maps and other third-party graphical tools helps AssetTrack show asset information location and movement history in a context that is easy for the customer. The functionality also supports and extends asset visibility to mobility-based solutions.    

On-Demand, “Live” Physical Asset Inventory – Anytime, Anywhere

With one click, AssetTrack 4.0 provides users with the real-time location, status and condition of all of their enterprise assets. This ability to conduct real-time inventories helps organizations save time and labor costs associated with manual physical inventories. The on-demand functionality gives clients the ability to quickly see location changes or new events that might affect their operations, enabling them to make quick decisions if necessary. It also provides instant reports which help companies comply with internal audits and industry regulations. Since the asset data stored in AssetTrack 4.0 can be accessed from any web browser, organizations can also quickly compare the inventory at their location against inventory at a remote location, so they can manage multiple sites quickly and easily. This version allows customers to perform physical inventory, audits and asset searches in the field. AssetTrack 4.0 supports a wide range of handheld platforms including rugged industrial passive RFID readers (including Motorola’s MC9090 and Intermec’s IP30), mobile active RFID readers (such as RF Code’s M220) and Windows mobile handsets.

Enhanced RFID Event Management

All of Fluensee’s solutions, including AssetTrack 4.0, include a built-in RFID middleware component. The newest version of AssetTrack has new location mapping rules to leverage the most complex RFID tag technologies a company might require for real-time asset tracking, including active RFID and real-time locating systems. With improved alerting functionality, AssetTrack 4.0 gives customers the ability to receive alerts when an asset is tampered with, exceeds certain temperatures, begins to move, or moves when it is not expected to move.

Remote RFID Infrastructure Management

The newest version of AssetTrack lets clients remotely monitor and manage their RFID infrastructure, including RFID readers, through the user interface. This is particularly important for large-scale RFID deployments that use hundreds or thousands of RFID devices. Similar to when an IT server needs a reboot, if an RFID scanner stops reading tags, it isn’t always practical for users to travel to the device location. AssetTrack 4.0 allows users to reboot the device remotely to get it running again.

Role-Based Dashboard and Ad Hoc Reporting

AssetTrack 4.0 provides a role-based dashboard that can be customized by combining pre-defined performance indicators, reports and charts, and allows clients to see different information based upon their particular needs. In addition to standard and scheduled reports, users can create and configure ad hoc reports through AssetTrack 4.0′s browser-based report design tool.

Enterprise Application Integration

Many companies have existing enterprise asset management systems. By using the information captured by technologies like RFID, AssetTrack 4.0 adds a real-time capability to existing systems, which helps extend the value of an organization’s legacy enterprise software investments. The latest version provides a faster way for companies to integrate AssetTrack to their existing database, asset management or enterprise systems.

Availability

Fluensee AssetTrack 4.0 is available for limited release at the end of February and will be generally available at the end of March. All of Fluensee’s solutions are available as either a hosted Software as a Service model or a standard software licensing model for customers that want to host the solution themselves. For more information about the product, please visit http://www.fluensee.com/assettrack.html.

About Fluensee

Fluensee’s RFID-enabled asset tracking and management solutions improve the visibility, accuracy, security and utilization of a company’s mobile and fixed assets. Its end-to-end solutions combine highly configurable and patented software and implementation services with hardware from leading RFID, barcode, GPS and sensor technology providers. Fluensee offers its browser-based, enterprise-class AssetTrack™ solution that tracks IT assets, pallets, tools, equipment and all types of other high-value assets, along with its Yard™ application that is designed to efficiently manage assets in transportation and distribution environments. All of Fluensee’s solutions are platform- and hardware-agnostic. Fluensee is a privately held, venture-backed company headquartered in Englewood, Colorado. For more information, visit http://www.fluensee.com.    

Media Contact

Leanne Smullen

(303) 799-0700

# # #

©Copyright 1997-

, Vocus PRW Holdings, LLC.
Vocus, PRWeb, and Publicity Wire are trademarks or registered trademarks of Vocus, Inc. or Vocus PRW Holdings, LLC.

Find More Facilities Asset Management Press Releases