/PRZWT/ The world today is full of innovative vitality and technological development is advancing rapidly. This is an era full of unlimited possibilities, but it also brings a series of new risks in the fields of security and privacy. Samsung Electronics realizes that when venturing into these unknown areas, it must be fully prepared for the potential threats that may arise. To this end, Samsung continuously monitors the constantly changing security situation and is committed to implementing dynamic enterprise security protection strategies.
Dr. Jerry Park, the global B2B business director of Samsung Electronics, is dedicated to providing equipment, platforms and related services that are tailored to the needs of global enterprise customers.
Today, cybersecurity threats affect all aspects from individual users to enterprise institutions. The enterprise equipment system must be able to withstand various attacks, including suspicious websites, internal personnel threats, malware, and new risks arising from the application of artificial intelligence in the workplace, such as prompt injection attacks and sensitive data leaks. As more and more employees in various industries access the enterprise network and resources through various devices, whether at the headquarters or on the business frontlines, these threats not only may cause serious security risks but also may lead to significant economic losses for the enterprises.
Enterprise safety incidents can occur at any stage of operation. According to an IDC study (1), up to 70% of successful intrusions originate from networked terminal devices such as mobile phones, laptops, and tablets. However, in the current cybersecurity operation environment, compared to personal computers and servers, mobile devices are often overlooked by IT administrators. Nowadays, mobile devices have become the most common way for employees to access the network, and this situation urgently needs to be changed. Only through systematic and comprehensive methods can we ensure a smooth mobile office experience while achieving uncompromising security protection. Currently, Samsung is collaborating with leading industry manufacturers to implement the collaborative zero-trust strategy in the field of terminal devices, thereby setting a new benchmark for mobile enterprise security.
Core Principles of Zero Trust Endpoint Security
Samsung's continuous innovation ability is always derived from a deep understanding of users. By actively listening to the feedback from consumers and the company, as well as anticipating the development trends of mobile technologies, Samsung has been able to continuously provide practical solutions for different users. As the head of the global mobile B2B business, I am extremely proud that Samsung has taken the lead in multiple key areas and created more comprehensive value for various industries. We are constantly advancing hardware-based device certification and threat detection technologies, fully following the zero-trust security principle, and always committed to providing secure and reliable mobile devices and solutions to meet and even exceed customers' expectations for security.
Zero trust is a security framework that fundamentally rejects the inherent implicit trust. It establishes a dynamic explicit verification mechanism by continuously assessing the security situation, risks, and trust levels based on specific contexts. Currently, the security solution market is dominated by network-centric zero trust solutions, with the focus being on implementing access control at the network boundary. However, this model has a key blind spot - terminal devices. Terminal devices are often the most vulnerable targets, being both a difficulty in cybersecurity protection and the weakest link in the enterprise IT ecosystem.
Correctly implementing the zero-trust principle on terminal devices means that all access requests will be dynamically evaluated based on the device's security status and the actual needs of the user, and continuous and real-time verification will be achieved. Although there is no absolutely unified standard principle for zero-trust terminal protection, the following practice guidelines have been widely adopted:
● For all devices, adhere to the principle of "never trust, always verify": Devices should not be automatically trusted just because they are within the network; instead, their trustworthiness must be verified before any access is granted.
●Continuous risk assessment and dynamic response: Terminal protection must be able to flexibly adapt to the constantly changing risk situation. It needs to continuously assess the access scenarios (such as location, time, and device security status), and dynamically adjust security policies. Once suspicious activities are detected, measures such as restricting access or isolating should be taken immediately.
● Minimization of permissions and dynamic access control: The terminal should implement access control based on the current situation, ensuring that permissions are granted on a need-to-use basis and the scope of access is strictly limited.
● Integrating identity, device and behavior signals: A zero-trust solution should implement access control based on detailed and comprehensive trust judgments. To achieve this, the zero-trust architecture continuously analyzes user identity, device status and real-time behavior signals to conduct dynamic assessment.
Currently, the zero-trust security strategy has been widely adopted, and Samsung has fully implemented this concept, dedicated to helping enterprises protect the weakest links in their IT environment. With the increasing popularity of cloud applications, bring-your-own-device (BYOD) work, and remote working in modern workplaces, the risks of terminal security continue to rise. Samsung attaches great importance to this challenge and is actively working with partners to jointly address it.
Innovative collaboration, building a solid layer upon layer of security
How can this concept be implemented in practice? Starting from the hardware layer to the operating system, and then to the security interface, Samsung Galaxy devices integrate the zero-trust principle into the architecture design. This not only achieves a layered defense system but also seamlessly integrates into the existing security framework of enterprises. These measures jointly assist enterprises in achieving precise threat detection and rapid response in a secure and reliable manner.
Samsung is well aware that the establishment of security capabilities cannot be achieved without ecological cooperation. Only through open collaboration can we provide customers with truly leading solutions. Over the years, Samsung has continuously advanced technological innovation and is committed to providing enterprises with comprehensive, high-performance, and safe and reliable overall solutions.
In 2024, Samsung integrated its defense-level multi-layer security platform Samsung Knox with Cisco's security service edge solution Cisco Secure Access. This integrated solution provides enterprise employees with a secure and flexible access experience, enabling enterprises to conduct comprehensive verification of user identities, device security status, and real-time situations before granting access permissions.
Samsung and Microsoft have established a solid partnership, and both sides have carried out in-depth collaboration based on the common vision of "reshaping mobile device security for enterprise customers". The first significant outcome of this strategic cooperation was launched in 2023: By integrating Samsung Knox and Microsoft Intune, both parties jointly released the industry's first certification solution based on mobile device hardware. This solution can be applied to both enterprise devices and personal devices and has now been integrated by default into all new Android application protection strategies, helping enterprises comprehensively enhance the security protection capability of the Samsung device ecosystem. In another important progress of the cooperation with Microsoft, Samsung became the first mobile device manufacturer in the industry to provide a direct connection interface to the security operation center. This function is achieved by integrating Samsung Knox Asset Intelligence and Microsoft Sentinel, the cloud-native security information and event management platform of Microsoft, providing excellent mobile security threat visualization capabilities for enterprise devices and achieving centralized monitoring and integrated protection.
Samsung and its partners are working together in multiple key areas to jointly address security challenges, aiming to ensure the security of mobile devices, reduce the risk of attacks, and at the same time, help employees work efficiently in a secure and trustworthy environment.
Comprehensive protection, enhanced privacy
Samsung continues to innovate and improve the Knox security solution, dedicated to providing customers with more efficient management capabilities, more transparent security visibility, and more reliable network threat protection.
By establishing zero trust as the core pillar of Knox, Samsung has comprehensively enhanced the security of mobile devices and data, and continuously tracked the evolution of threat situations. By promptly launching solutions, it has continuously expanded the boundaries of the security field.
As artificial intelligence and the Internet of Everything become the core of technological development, the threat landscape is becoming increasingly complex, and the importance of security and privacy is becoming more and more prominent. Currently, the business environment is constantly facing more and more cyber attacks, which often exploit vulnerabilities in IT systems, while mobile devices and other terminals are rapidly becoming the main targets.
Therefore, Samsung is collaborating with industry-leading enterprises to provide secure solutions that can seamlessly integrate with existing infrastructure, achieving true end-to-end protection. These collaborative achievements not only demonstrate Samsung's adherence to industry standards, but also showcase its commitment to promoting continuous technological progress in the field of zero-trust endpoint security. And this is just the beginning of moving towards a safer future.
)
)
)
)
)
)
)
)
)
)