SlideShare a Scribd company logo

Rapidly develop secure mobile apps with IBM MobileFirst on Bluemix Containers

Ajay Chebbi
Ajay Chebbi

Creating standalone apps is fun! Think angry bird. But once you want to connect to a enterprise backend and provide enterprise grade security (think a bank app), the mobile app developer productivity starts dropping. Using IBM MobileFirst Platform Foundation Server you can rapidly develop secure mobile apps. The MFP server can be on prem or on the cloud on Bluemix Docker Containers

1 of 22
Downloaded 14 times
Rapidly develop secure mobile apps with IBM MobileFirst on Bluemix Containers Using IBM MobileFirst Platform Foundation server + @ajaychebbi 1
Development Engagement Security Operations Development Engagement Security Operations Developers unable to focus on High-Value features 2
Data RichSecure Continuously Improve Contextualize and Personalize Features of High-Value Apps 3
BUILD, INTEGRATE & SCALE WITH MODULAR SERVICES IBM MobileFirst Platform IBM MobileFirst Protect SECURE & MANAGE DEVICES, APPS, CONTENT & TRANSACTIONS TRANSFORM YOUR BUSINESS IBM MobileFirst Solutions ENGAGE YOUR CLIENTS IN NEW WAYS IBM MobileFirst Engage 4
Threats on your employees Threats on your customers of financial apps on Android have been hacked of Top 100 Android apps have been hacked annual cost of crime Security Threats 5
Speeding the development, integration and management of mobile applications and infrastructure IBM MobileFirst Platform goes beyond mobile app UI creation to deliver mobile optimized, standards-based, middleware and tools for enterprise-grade mobile applications and services creation Accelerate Web, Native, and Hybrid Development • Rich infrastructure, enabling developer focus on business logic • Preview, simulation, and testing tools for shortening development lifecycle • Mechanisms to industrialize app development • Team work facilitation and development lifecycle tools Facilitate App Security and Trust • Server-enforced authentication • App authenticity and user-app-device binding • Secure and syncable on-device storage • App version enforcement Enable User Engagement • Mobile-friendly enterprise integration • Unified push and SMS notifications • Geo-location and context collections and intelligence • Mobile-friendly integration Support Mobile Operations • Operational analytics with efficient data acquisition • Offline and online event management integration • Remote user and app control without MDM "Best Mobile Development Solution" as voted by SIIA members for 2013 CODiE Awards IBM MobileFirst Platform 6
MobileFirst Server Firewall Existing Integration Hub backend integration HTTP(S) Database WebService REST JMS MQ File FTP SAP Siebel : JDBC Web Service JMSJSON MobileFirst foundation server provides a single secure point of integration into the Enterprise that speeds integration and enables management of mobile solutions Enterprise Applications IBM MobileFirst SDK Enterprise Integration Eclipse, XCode, Visual Studio, Xamarin, Android Studio etc 7
User Authentication • Plugs into existing enterprise security systems with a variety of authentication methods • Certificate-based, Touch ID, LDAP server, Social (oAuth) • Multi-factor authentication • Disable app version, specific user or devices through console App management  Version Enforcement  Remote Disable App Authenticity • Verify app identity; protect brand reputation, intellectual property, and back-end data Encrypt Local Data • Leverage user identity to encrypt and retrieve data stored locally on the device Application Scanning • Find code vulnerabilities complete with remediation assistance Protect enterprise data from mobile exploits Secure Mobile Apps 8
Proactively enforce security updates Remote disable Direct update Provide robust authentication and authorization to secure users Authenticatio n integration framework Data protection realms Coupling device id with user id Streamline corporate security approval processes Mobile platform as a trust factor Protect from Known Application Security Threats Code obfuscation SSL with server identity verification Proven platform security Jailbreak and malware detection App authenticity testing Protect data on the device Encrypted cache / DB Offline authentication Secure challenge- response on startup IBM MobileFirst Platform: Security Features Mapping 9
From multiple point-to-point integrations •Multiple sets of integrations to enterprise resources to build and maintain •YOU manage caching, synchronization and end- to-end encryption To streamlined, transparent access •MFP transforms enterprise data into mobile-friendly, JSON format •MFP Server manages caching, data synchronization and end-to-end encryption ERP Engine App DB HTTP (REST, SOAP), JMS SQL SAP HTTP, CAST IRON JSON MFP Adapters MFP SERVER ERP Engine App DB BlackberryApple BlackberryApple Controlled back-end integration using Adapters 10 Cloud Service Cloud Service
Disable or Notify the end user 11
IBM MobileFirst: Programmable Security Concepts Security Tests A security test defines a security configuration for a protected resource Authentication realms Resources are protected by authentication realms. Authentication processes can be interactive or non-interactive. Authenticators and login modules An authenticator collects client credentials. A login module validates them. 12
<displayName>MyBankAdapter</displayName> <description>MyBankAdapter</description> <connectivity> <connectionPolicy xsi:type="http:HTTPConnectionPolicyType"> <protocol>http</protocol> <domain>rss.cnn.com</domain> <port>80</port> </connectionPolicy> <loadConstraints maxConcurrentConnectionsPerNode="2" /> </connectivity> <procedure name="getDriveLogin” securityTest="Adapter-securityTest” /> <procedure name="getAccounts” /> <procedure name="getTransactions” /> <procedure name="getTransferFunds” /> Adapters can point to security tests 13
<securityTests> <customSecurityTest name="Adapter-securityTest"> <test realm="SampleAppRealm" isInternalUserID="true"/> </customSecurityTest> </securityTests> <loginModules> <loginModule name="StrongAuth"> <className>com.worklight.core.auth.ext.NonValidatingLoginModule</className> </loginModule> </loginModules> <realms> <realm name="SampleAppRealm" loginModule="StrongAuth"> <className>com.worklight.core.auth.ext.FormBasedAuthenticator</className> </realm> </realms> Security Configuration is under the project 14
public override void HandleChallenge(WorklightResponse challenge) { Console.WriteLine ("We were challenged.. so we are handling it"); Dictionary<String,String > parms = new Dictionary<String, String> (); parms.Add ("j_username", "bigboss"); parms.Add ("j_password", "password"); LoginFormParameters = new LoginFormInfo ("j_security_check", parms, null, 30000, "post"); shouldSubmitLoginForm = true; } Code the app side challenge handler 15
public async void Connect(){ //lets send a message to the server client.Analytics.Log("Trying to connect to server",metadata); ChallengeHandler customCH = new CustomChallengeHandler (appRealm); client.RegisterChallengeHandler(customCH); WorklightResponse task = await client.Connect (); //lets log to the local client (not server) client.Logger("Xamarin").Trace ("connection"); //write to the server the connection status client.Analytics.Log ("Connect response : " + task.Success); //return task; } Configure on connect to MobileFirst 16
Public IP Admin Console Admin Service Mobile Browser Simulator Analytics Service Analytics Console Derby MFPF all inclusive starter container Cloudant DataProxyMFPF Run time Deployment on Bluemix Containers – Quick start 17 container registry image run
Demo 18
local registry containers customers image dockerfile ubuntu image java runtime liberty runtime MFPF runtime Customers MFP projects ./prepareserverdbs.sh ./prepareserver.sh ./prepareanalytics.sh ./startserver.sh ./startanalytics.sh 1 2 3 4 Deployment of configurable image hub.docker.com 19
Admin Console Admin Service MFPF Runtime MFPF Container Go Router Analytics Service Analytics Console Analytics Container Depends on Go Router Cloudant Dataproxy Database Service admin Configurable image topology 20
Developer support http://stackoverflow.com/questions/tagged/mobilefirst 21
Resources Home (documentation, blogs, downloads etc...) http://developer.ibm.com/mobilefirst MobileFirst Getting Started (ready made samples, tutorials etc) https://developer.ibm.com/mobilefirstplatform/documentation/getting-started-7-1/ IBM MobileFirst Support http://stackoverflow.com/questions/tagged/mobilefirst Quick Start on Bluemix http://ibm.co/1PdScm5 22
Ad

Recommended

Put your business in motion with IBM MobileFirst
Put your business in motion with IBM MobileFirstPut your business in motion with IBM MobileFirst
Put your business in motion with IBM MobileFirst
Ed Brill
 
How Meritage Homes Drove More Mobile Business Using IBM MobileFirst Platform ...
How Meritage Homes Drove More Mobile Business Using IBM MobileFirst Platform ...How Meritage Homes Drove More Mobile Business Using IBM MobileFirst Platform ...
How Meritage Homes Drove More Mobile Business Using IBM MobileFirst Platform ...
Michael Jacobsen
 
IBM Mobile First Client Presentation
IBM Mobile First Client Presentation IBM Mobile First Client Presentation
IBM Mobile First Client Presentation
MATT ALEXANDER
 
Ibm mobile first protect (maas360)
Ibm mobile first protect (maas360)Ibm mobile first protect (maas360)
Ibm mobile first protect (maas360)
gule mariam
 
Ibm mobile first briefing
Ibm mobile first briefingIbm mobile first briefing
Ibm mobile first briefing
Nitin Gaur
 
IBM InterConnect 2013 Mobile Keynote: Marie Wieck
IBM InterConnect 2013 Mobile Keynote: Marie WieckIBM InterConnect 2013 Mobile Keynote: Marie Wieck
IBM InterConnect 2013 Mobile Keynote: Marie Wieck
IBM Events
 
Capgemini Connected Car Demo Using IBM Internet of Things Foundation on Bluemix
Capgemini Connected Car Demo Using IBM Internet of Things Foundation on BluemixCapgemini Connected Car Demo Using IBM Internet of Things Foundation on Bluemix
Capgemini Connected Car Demo Using IBM Internet of Things Foundation on Bluemix
Capgemini
 
IBM MobileFirst and Case Studies_Frank Müller_IBM Symposium 2013
IBM MobileFirst and Case Studies_Frank Müller_IBM Symposium 2013IBM MobileFirst and Case Studies_Frank Müller_IBM Symposium 2013
IBM MobileFirst and Case Studies_Frank Müller_IBM Symposium 2013
IBM Switzerland
 
Enterprise Mobility - An Introduction
Enterprise Mobility - An IntroductionEnterprise Mobility - An Introduction
Enterprise Mobility - An Introduction
Folio3 Software
 
Future proof and extend your IAM to Mobile Platforms and any connected device
Future proof and extend your IAM to Mobile Platforms and any connected deviceFuture proof and extend your IAM to Mobile Platforms and any connected device
Future proof and extend your IAM to Mobile Platforms and any connected device
Aldo Pietropaolo
 
IBM Recipe: 1 part IoT Foundation, 2 parts IBM Bluemix - mix them to create ...
IBM Recipe: 1 part IoT Foundation, 2 parts IBM Bluemix - mix them to create ...IBM Recipe: 1 part IoT Foundation, 2 parts IBM Bluemix - mix them to create ...
IBM Recipe: 1 part IoT Foundation, 2 parts IBM Bluemix - mix them to create ...
Foong Yen Lee
 
5 Steps for Enterprise Mobility
5 Steps for Enterprise Mobility5 Steps for Enterprise Mobility
5 Steps for Enterprise Mobility
Matthew David
 
Mobile App Management (MAM) for Developers and IT-Administrators
Mobile App Management (MAM) for Developers and IT-AdministratorsMobile App Management (MAM) for Developers and IT-Administrators
Mobile App Management (MAM) for Developers and IT-Administrators
MobileSolutionsDTAG
 
Enterprise mobility management
Enterprise mobility managementEnterprise mobility management
Enterprise mobility management
Info-Tech Research Group
 
Mobile World Congress 2013 IBM-ATT Session
Mobile World Congress 2013 IBM-ATT SessionMobile World Congress 2013 IBM-ATT Session
Mobile World Congress 2013 IBM-ATT Session
Leigh Williamson
 
Enterprise Mobility Strategy
Enterprise Mobility StrategyEnterprise Mobility Strategy
Enterprise Mobility Strategy
Freeform Dynamics
 
IBM Mobile Overview for Ecosystem Partners
IBM Mobile Overview for Ecosystem PartnersIBM Mobile Overview for Ecosystem Partners
IBM Mobile Overview for Ecosystem Partners
Jeremy Siewert
 
IBM Announce Intent to Acquire Fiberlink Analyst Presentation
IBM Announce Intent to Acquire Fiberlink Analyst PresentationIBM Announce Intent to Acquire Fiberlink Analyst Presentation
IBM Announce Intent to Acquire Fiberlink Analyst Presentation
Ron Favali
 
DSS ITSEC Conference 2012 - MobileIron MDM, MAM & Mobile Security
DSS ITSEC Conference 2012 - MobileIron MDM, MAM & Mobile SecurityDSS ITSEC Conference 2012 - MobileIron MDM, MAM & Mobile Security
DSS ITSEC Conference 2012 - MobileIron MDM, MAM & Mobile Security
Andris Soroka
 
03 put your business in motion become a mobile enterprise icty
03 put your business in motion become a mobile enterprise icty03 put your business in motion become a mobile enterprise icty
03 put your business in motion become a mobile enterprise icty
Warba Insurance Co Kuwait
 
Mobile-First Strategy
Mobile-First StrategyMobile-First Strategy
Mobile-First Strategy
Steve Buttry
 
Enterprise Mobility Solutions & Services
Enterprise Mobility Solutions & ServicesEnterprise Mobility Solutions & Services
Enterprise Mobility Solutions & Services
Affle mTraction Enterprise
 
Enterprise mobility services
Enterprise mobility servicesEnterprise mobility services
Enterprise mobility services
Net Solutions
 
Becoming an interconnected enterprise
Becoming an interconnected enterpriseBecoming an interconnected enterprise
Becoming an interconnected enterprise
Warba Insurance Co Kuwait
 
MobileIron's Enterprise Solution for Mobile Web Browsing
MobileIron's Enterprise Solution for Mobile Web BrowsingMobileIron's Enterprise Solution for Mobile Web Browsing
MobileIron's Enterprise Solution for Mobile Web Browsing
MobileIron
 
IBM Mobili First - IBM Business Connect QatarPut your business in motion
IBM Mobili First - IBM Business Connect QatarPut your business in motionIBM Mobili First - IBM Business Connect QatarPut your business in motion
IBM Mobili First - IBM Business Connect QatarPut your business in motion
Dalia Reda
 
MobileIron Deck
MobileIron DeckMobileIron Deck
MobileIron Deck
Jason Moser
 
IBM Mobile First
IBM Mobile FirstIBM Mobile First
IBM Mobile First
Anna Landolfi
 
Build,Run and manage MobileFirst apps with Eclipse
Build,Run and manage MobileFirst apps with EclipseBuild,Run and manage MobileFirst apps with Eclipse
Build,Run and manage MobileFirst apps with Eclipse
Vidyasagar Machupalli
 
IBM MobileFirst Platform for iOS Swift Developers
IBM MobileFirst Platform for iOS Swift DevelopersIBM MobileFirst Platform for iOS Swift Developers
IBM MobileFirst Platform for iOS Swift Developers
Vidyasagar Machupalli
 
Ad

More Related Content

What's hot (20)

Enterprise Mobility - An Introduction
Enterprise Mobility - An IntroductionEnterprise Mobility - An Introduction
Enterprise Mobility - An Introduction
Folio3 Software
 
Future proof and extend your IAM to Mobile Platforms and any connected device
Future proof and extend your IAM to Mobile Platforms and any connected deviceFuture proof and extend your IAM to Mobile Platforms and any connected device
Future proof and extend your IAM to Mobile Platforms and any connected device
Aldo Pietropaolo
 
IBM Recipe: 1 part IoT Foundation, 2 parts IBM Bluemix - mix them to create ...
IBM Recipe: 1 part IoT Foundation, 2 parts IBM Bluemix - mix them to create ...IBM Recipe: 1 part IoT Foundation, 2 parts IBM Bluemix - mix them to create ...
IBM Recipe: 1 part IoT Foundation, 2 parts IBM Bluemix - mix them to create ...
Foong Yen Lee
 
5 Steps for Enterprise Mobility
5 Steps for Enterprise Mobility5 Steps for Enterprise Mobility
5 Steps for Enterprise Mobility
Matthew David
 
Mobile App Management (MAM) for Developers and IT-Administrators
Mobile App Management (MAM) for Developers and IT-AdministratorsMobile App Management (MAM) for Developers and IT-Administrators
Mobile App Management (MAM) for Developers and IT-Administrators
MobileSolutionsDTAG
 
Enterprise mobility management
Enterprise mobility managementEnterprise mobility management
Enterprise mobility management
Info-Tech Research Group
 
Mobile World Congress 2013 IBM-ATT Session
Mobile World Congress 2013 IBM-ATT SessionMobile World Congress 2013 IBM-ATT Session
Mobile World Congress 2013 IBM-ATT Session
Leigh Williamson
 
Enterprise Mobility Strategy
Enterprise Mobility StrategyEnterprise Mobility Strategy
Enterprise Mobility Strategy
Freeform Dynamics
 
IBM Mobile Overview for Ecosystem Partners
IBM Mobile Overview for Ecosystem PartnersIBM Mobile Overview for Ecosystem Partners
IBM Mobile Overview for Ecosystem Partners
Jeremy Siewert
 
IBM Announce Intent to Acquire Fiberlink Analyst Presentation
IBM Announce Intent to Acquire Fiberlink Analyst PresentationIBM Announce Intent to Acquire Fiberlink Analyst Presentation
IBM Announce Intent to Acquire Fiberlink Analyst Presentation
Ron Favali
 
DSS ITSEC Conference 2012 - MobileIron MDM, MAM & Mobile Security
DSS ITSEC Conference 2012 - MobileIron MDM, MAM & Mobile SecurityDSS ITSEC Conference 2012 - MobileIron MDM, MAM & Mobile Security
DSS ITSEC Conference 2012 - MobileIron MDM, MAM & Mobile Security
Andris Soroka
 
03 put your business in motion become a mobile enterprise icty
03 put your business in motion become a mobile enterprise icty03 put your business in motion become a mobile enterprise icty
03 put your business in motion become a mobile enterprise icty
Warba Insurance Co Kuwait
 
Mobile-First Strategy
Mobile-First StrategyMobile-First Strategy
Mobile-First Strategy
Steve Buttry
 
Enterprise Mobility Solutions & Services
Enterprise Mobility Solutions & ServicesEnterprise Mobility Solutions & Services
Enterprise Mobility Solutions & Services
Affle mTraction Enterprise
 
Enterprise mobility services
Enterprise mobility servicesEnterprise mobility services
Enterprise mobility services
Net Solutions
 
Becoming an interconnected enterprise
Becoming an interconnected enterpriseBecoming an interconnected enterprise
Becoming an interconnected enterprise
Warba Insurance Co Kuwait
 
MobileIron's Enterprise Solution for Mobile Web Browsing
MobileIron's Enterprise Solution for Mobile Web BrowsingMobileIron's Enterprise Solution for Mobile Web Browsing
MobileIron's Enterprise Solution for Mobile Web Browsing
MobileIron
 
IBM Mobili First - IBM Business Connect QatarPut your business in motion
IBM Mobili First - IBM Business Connect QatarPut your business in motionIBM Mobili First - IBM Business Connect QatarPut your business in motion
IBM Mobili First - IBM Business Connect QatarPut your business in motion
Dalia Reda
 
MobileIron Deck
MobileIron DeckMobileIron Deck
MobileIron Deck
Jason Moser
 
IBM Mobile First
IBM Mobile FirstIBM Mobile First
IBM Mobile First
Anna Landolfi
 
Enterprise Mobility - An Introduction
Enterprise Mobility - An IntroductionEnterprise Mobility - An Introduction
Enterprise Mobility - An Introduction
Folio3 Software
 
Future proof and extend your IAM to Mobile Platforms and any connected device
Future proof and extend your IAM to Mobile Platforms and any connected deviceFuture proof and extend your IAM to Mobile Platforms and any connected device
Future proof and extend your IAM to Mobile Platforms and any connected device
Aldo Pietropaolo
 
IBM Recipe: 1 part IoT Foundation, 2 parts IBM Bluemix - mix them to create ...
IBM Recipe: 1 part IoT Foundation, 2 parts IBM Bluemix - mix them to create ...IBM Recipe: 1 part IoT Foundation, 2 parts IBM Bluemix - mix them to create ...
IBM Recipe: 1 part IoT Foundation, 2 parts IBM Bluemix - mix them to create ...
Foong Yen Lee
 
5 Steps for Enterprise Mobility
5 Steps for Enterprise Mobility5 Steps for Enterprise Mobility
5 Steps for Enterprise Mobility
Matthew David
 
Mobile App Management (MAM) for Developers and IT-Administrators
Mobile App Management (MAM) for Developers and IT-AdministratorsMobile App Management (MAM) for Developers and IT-Administrators
Mobile App Management (MAM) for Developers and IT-Administrators
MobileSolutionsDTAG
 
Enterprise mobility management
Enterprise mobility managementEnterprise mobility management
Enterprise mobility management
Info-Tech Research Group
 
Mobile World Congress 2013 IBM-ATT Session
Mobile World Congress 2013 IBM-ATT SessionMobile World Congress 2013 IBM-ATT Session
Mobile World Congress 2013 IBM-ATT Session
Leigh Williamson
 
Enterprise Mobility Strategy
Enterprise Mobility StrategyEnterprise Mobility Strategy
Enterprise Mobility Strategy
Freeform Dynamics
 
IBM Mobile Overview for Ecosystem Partners
IBM Mobile Overview for Ecosystem PartnersIBM Mobile Overview for Ecosystem Partners
IBM Mobile Overview for Ecosystem Partners
Jeremy Siewert
 
IBM Announce Intent to Acquire Fiberlink Analyst Presentation
IBM Announce Intent to Acquire Fiberlink Analyst PresentationIBM Announce Intent to Acquire Fiberlink Analyst Presentation
IBM Announce Intent to Acquire Fiberlink Analyst Presentation
Ron Favali
 
DSS ITSEC Conference 2012 - MobileIron MDM, MAM & Mobile Security
DSS ITSEC Conference 2012 - MobileIron MDM, MAM & Mobile SecurityDSS ITSEC Conference 2012 - MobileIron MDM, MAM & Mobile Security
DSS ITSEC Conference 2012 - MobileIron MDM, MAM & Mobile Security
Andris Soroka
 
03 put your business in motion become a mobile enterprise icty
03 put your business in motion become a mobile enterprise icty03 put your business in motion become a mobile enterprise icty
03 put your business in motion become a mobile enterprise icty
Warba Insurance Co Kuwait
 
Mobile-First Strategy
Mobile-First StrategyMobile-First Strategy
Mobile-First Strategy
Steve Buttry
 
Enterprise Mobility Solutions & Services
Enterprise Mobility Solutions & ServicesEnterprise Mobility Solutions & Services
Enterprise Mobility Solutions & Services
Affle mTraction Enterprise
 
Enterprise mobility services
Enterprise mobility servicesEnterprise mobility services
Enterprise mobility services
Net Solutions
 
Becoming an interconnected enterprise
Becoming an interconnected enterpriseBecoming an interconnected enterprise
Becoming an interconnected enterprise
Warba Insurance Co Kuwait
 
MobileIron's Enterprise Solution for Mobile Web Browsing
MobileIron's Enterprise Solution for Mobile Web BrowsingMobileIron's Enterprise Solution for Mobile Web Browsing
MobileIron's Enterprise Solution for Mobile Web Browsing
MobileIron
 
IBM Mobili First - IBM Business Connect QatarPut your business in motion
IBM Mobili First - IBM Business Connect QatarPut your business in motionIBM Mobili First - IBM Business Connect QatarPut your business in motion
IBM Mobili First - IBM Business Connect QatarPut your business in motion
Dalia Reda
 
MobileIron Deck
MobileIron DeckMobileIron Deck
MobileIron Deck
Jason Moser
 
IBM Mobile First
IBM Mobile FirstIBM Mobile First
IBM Mobile First
Anna Landolfi
 

Viewers also liked (6)

Build,Run and manage MobileFirst apps with Eclipse
Build,Run and manage MobileFirst apps with EclipseBuild,Run and manage MobileFirst apps with Eclipse
Build,Run and manage MobileFirst apps with Eclipse
Vidyasagar Machupalli
 
IBM MobileFirst Platform for iOS Swift Developers
IBM MobileFirst Platform for iOS Swift DevelopersIBM MobileFirst Platform for iOS Swift Developers
IBM MobileFirst Platform for iOS Swift Developers
Vidyasagar Machupalli
 
Build a MobileFirst Agenda - IBM Mobile Enterprise
Build a MobileFirst Agenda - IBM Mobile EnterpriseBuild a MobileFirst Agenda - IBM Mobile Enterprise
Build a MobileFirst Agenda - IBM Mobile Enterprise
Ed Brill
 
Turning up the HEAT with IBM MobileFirst for iOS Apps (Interconnect 2016)
Turning up the HEAT with IBM MobileFirst for iOS Apps (Interconnect 2016)Turning up the HEAT with IBM MobileFirst for iOS Apps (Interconnect 2016)
Turning up the HEAT with IBM MobileFirst for iOS Apps (Interconnect 2016)
Michael Elder
 
Improving Software Delivery with DevOps & Software Defined Environments
Improving Software Delivery with DevOps & Software Defined EnvironmentsImproving Software Delivery with DevOps & Software Defined Environments
Improving Software Delivery with DevOps & Software Defined Environments
Michael Elder
 
Stateful set in kubernetes implementation & usecases
Stateful set in kubernetes implementation & usecases Stateful set in kubernetes implementation & usecases
Stateful set in kubernetes implementation & usecases
Krishna-Kumar
 
Build,Run and manage MobileFirst apps with Eclipse
Build,Run and manage MobileFirst apps with EclipseBuild,Run and manage MobileFirst apps with Eclipse
Build,Run and manage MobileFirst apps with Eclipse
Vidyasagar Machupalli
 
IBM MobileFirst Platform for iOS Swift Developers
IBM MobileFirst Platform for iOS Swift DevelopersIBM MobileFirst Platform for iOS Swift Developers
IBM MobileFirst Platform for iOS Swift Developers
Vidyasagar Machupalli
 
Build a MobileFirst Agenda - IBM Mobile Enterprise
Build a MobileFirst Agenda - IBM Mobile EnterpriseBuild a MobileFirst Agenda - IBM Mobile Enterprise
Build a MobileFirst Agenda - IBM Mobile Enterprise
Ed Brill
 
Turning up the HEAT with IBM MobileFirst for iOS Apps (Interconnect 2016)
Turning up the HEAT with IBM MobileFirst for iOS Apps (Interconnect 2016)Turning up the HEAT with IBM MobileFirst for iOS Apps (Interconnect 2016)
Turning up the HEAT with IBM MobileFirst for iOS Apps (Interconnect 2016)
Michael Elder
 
Improving Software Delivery with DevOps & Software Defined Environments
Improving Software Delivery with DevOps & Software Defined EnvironmentsImproving Software Delivery with DevOps & Software Defined Environments
Improving Software Delivery with DevOps & Software Defined Environments
Michael Elder
 
Stateful set in kubernetes implementation & usecases
Stateful set in kubernetes implementation & usecases Stateful set in kubernetes implementation & usecases
Stateful set in kubernetes implementation & usecases
Krishna-Kumar
 
Ad

Similar to Rapidly develop secure mobile apps with IBM MobileFirst on Bluemix Containers (20)

Mobile Enterprise Application Platform
Mobile Enterprise Application PlatformMobile Enterprise Application Platform
Mobile Enterprise Application Platform
Nugroho Gito
 
Securing Your Cloud Applications
Securing Your Cloud ApplicationsSecuring Your Cloud Applications
Securing Your Cloud Applications
IBM Security
 
Enhancing your mobile enterprise security with ibm worklight tips
Enhancing your mobile enterprise security with ibm worklight tipsEnhancing your mobile enterprise security with ibm worklight tips
Enhancing your mobile enterprise security with ibm worklight tips
bupbechanhgmail
 
Connecting Xamarin Apps with IBM Worklight in Bluemix
Connecting Xamarin Apps with IBM Worklight in BluemixConnecting Xamarin Apps with IBM Worklight in Bluemix
Connecting Xamarin Apps with IBM Worklight in Bluemix
IBM
 
Mobile Security - Words like Bring Your Own Device, and Federation sounds fam...
Mobile Security - Words like Bring Your Own Device, and Federation sounds fam...Mobile Security - Words like Bring Your Own Device, and Federation sounds fam...
Mobile Security - Words like Bring Your Own Device, and Federation sounds fam...
IBM Danmark
 
IBM MobileFirst Reference Architecture 1512 v3 2015
IBM MobileFirst Reference Architecture 1512 v3 2015IBM MobileFirst Reference Architecture 1512 v3 2015
IBM MobileFirst Reference Architecture 1512 v3 2015
Sreeni Pamidala
 
Embracing secure, scalable BYOD with Sencha and Centrify
Embracing secure, scalable BYOD with Sencha and CentrifyEmbracing secure, scalable BYOD with Sencha and Centrify
Embracing secure, scalable BYOD with Sencha and Centrify
Sumana Mehta
 
IBM Bluemix
IBM BluemixIBM Bluemix
IBM Bluemix
Andrzej Osmak
 
Mobile SSO: Give App Users a Break from Typing Passwords
Mobile SSO: Give App Users a Break from Typing PasswordsMobile SSO: Give App Users a Break from Typing Passwords
Mobile SSO: Give App Users a Break from Typing Passwords
CA API Management
 
Principales nouveautés de la famille Microsoft Entra
Principales nouveautés de la famille Microsoft EntraPrincipales nouveautés de la famille Microsoft Entra
Principales nouveautés de la famille Microsoft Entra
Identity Days
 
Mobile Security for the Enterprise
Mobile Security for the EnterpriseMobile Security for the Enterprise
Mobile Security for the Enterprise
Will Adams
 
Smart Identity for the Hybrid Multicloud World
Smart Identity for the Hybrid Multicloud WorldSmart Identity for the Hybrid Multicloud World
Smart Identity for the Hybrid Multicloud World
Katherine Cola
 
Federation Evolved: How Cloud, Mobile & APIs Change the Way We Broker Identity
Federation Evolved: How Cloud, Mobile & APIs Change the Way We Broker IdentityFederation Evolved: How Cloud, Mobile & APIs Change the Way We Broker Identity
Federation Evolved: How Cloud, Mobile & APIs Change the Way We Broker Identity
CA API Management
 
3° Sessione - VMware Airwatch, la gestione della mobilità nelle organizzazion...
3° Sessione - VMware Airwatch, la gestione della mobilità nelle organizzazion...3° Sessione - VMware Airwatch, la gestione della mobilità nelle organizzazion...
3° Sessione - VMware Airwatch, la gestione della mobilità nelle organizzazion...
Jürgen Ambrosi
 
MDM is not Enough - Parmelee
MDM is not Enough - Parmelee MDM is not Enough - Parmelee
MDM is not Enough - Parmelee
Prolifics
 
IBM Maas360 with Watson
IBM Maas360 with WatsonIBM Maas360 with Watson
IBM Maas360 with Watson
BuyOnCloud Software Service (P) Ltd.
 
IBM MaaS360 with watson
IBM MaaS360 with watsonIBM MaaS360 with watson
IBM MaaS360 with watson
Prime Infoserv
 
The Future of Mobile Application Security
The Future of Mobile Application SecurityThe Future of Mobile Application Security
The Future of Mobile Application Security
SecureAuth
 
IBM Security Portfolio - 2015
IBM Security Portfolio - 2015IBM Security Portfolio - 2015
IBM Security Portfolio - 2015
IBM Thailand Co Ltd
 
Security As A Service
Security As A ServiceSecurity As A Service
Security As A Service
Olav Tvedt
 
Mobile Enterprise Application Platform
Mobile Enterprise Application PlatformMobile Enterprise Application Platform
Mobile Enterprise Application Platform
Nugroho Gito
 
Securing Your Cloud Applications
Securing Your Cloud ApplicationsSecuring Your Cloud Applications
Securing Your Cloud Applications
IBM Security
 
Enhancing your mobile enterprise security with ibm worklight tips
Enhancing your mobile enterprise security with ibm worklight tipsEnhancing your mobile enterprise security with ibm worklight tips
Enhancing your mobile enterprise security with ibm worklight tips
bupbechanhgmail
 
Connecting Xamarin Apps with IBM Worklight in Bluemix
Connecting Xamarin Apps with IBM Worklight in BluemixConnecting Xamarin Apps with IBM Worklight in Bluemix
Connecting Xamarin Apps with IBM Worklight in Bluemix
IBM
 
Mobile Security - Words like Bring Your Own Device, and Federation sounds fam...
Mobile Security - Words like Bring Your Own Device, and Federation sounds fam...Mobile Security - Words like Bring Your Own Device, and Federation sounds fam...
Mobile Security - Words like Bring Your Own Device, and Federation sounds fam...
IBM Danmark
 
IBM MobileFirst Reference Architecture 1512 v3 2015
IBM MobileFirst Reference Architecture 1512 v3 2015IBM MobileFirst Reference Architecture 1512 v3 2015
IBM MobileFirst Reference Architecture 1512 v3 2015
Sreeni Pamidala
 
Embracing secure, scalable BYOD with Sencha and Centrify
Embracing secure, scalable BYOD with Sencha and CentrifyEmbracing secure, scalable BYOD with Sencha and Centrify
Embracing secure, scalable BYOD with Sencha and Centrify
Sumana Mehta
 
IBM Bluemix
IBM BluemixIBM Bluemix
IBM Bluemix
Andrzej Osmak
 
Mobile SSO: Give App Users a Break from Typing Passwords
Mobile SSO: Give App Users a Break from Typing PasswordsMobile SSO: Give App Users a Break from Typing Passwords
Mobile SSO: Give App Users a Break from Typing Passwords
CA API Management
 
Principales nouveautés de la famille Microsoft Entra
Principales nouveautés de la famille Microsoft EntraPrincipales nouveautés de la famille Microsoft Entra
Principales nouveautés de la famille Microsoft Entra
Identity Days
 
Mobile Security for the Enterprise
Mobile Security for the EnterpriseMobile Security for the Enterprise
Mobile Security for the Enterprise
Will Adams
 
Smart Identity for the Hybrid Multicloud World
Smart Identity for the Hybrid Multicloud WorldSmart Identity for the Hybrid Multicloud World
Smart Identity for the Hybrid Multicloud World
Katherine Cola
 
Federation Evolved: How Cloud, Mobile & APIs Change the Way We Broker Identity
Federation Evolved: How Cloud, Mobile & APIs Change the Way We Broker IdentityFederation Evolved: How Cloud, Mobile & APIs Change the Way We Broker Identity
Federation Evolved: How Cloud, Mobile & APIs Change the Way We Broker Identity
CA API Management
 
3° Sessione - VMware Airwatch, la gestione della mobilità nelle organizzazion...
3° Sessione - VMware Airwatch, la gestione della mobilità nelle organizzazion...3° Sessione - VMware Airwatch, la gestione della mobilità nelle organizzazion...
3° Sessione - VMware Airwatch, la gestione della mobilità nelle organizzazion...
Jürgen Ambrosi
 
MDM is not Enough - Parmelee
MDM is not Enough - Parmelee MDM is not Enough - Parmelee
MDM is not Enough - Parmelee
Prolifics
 
IBM Maas360 with Watson
IBM Maas360 with WatsonIBM Maas360 with Watson
IBM Maas360 with Watson
BuyOnCloud Software Service (P) Ltd.
 
IBM MaaS360 with watson
IBM MaaS360 with watsonIBM MaaS360 with watson
IBM MaaS360 with watson
Prime Infoserv
 
The Future of Mobile Application Security
The Future of Mobile Application SecurityThe Future of Mobile Application Security
The Future of Mobile Application Security
SecureAuth
 
IBM Security Portfolio - 2015
IBM Security Portfolio - 2015IBM Security Portfolio - 2015
IBM Security Portfolio - 2015
IBM Thailand Co Ltd
 
Security As A Service
Security As A ServiceSecurity As A Service
Security As A Service
Olav Tvedt
 
Ad

Rapidly develop secure mobile apps with IBM MobileFirst on Bluemix Containers

  • 1. Rapidly develop secure mobile apps with IBM MobileFirst on Bluemix Containers Using IBM MobileFirst Platform Foundation server + @ajaychebbi 1
  • 4. BUILD, INTEGRATE & SCALE WITH MODULAR SERVICES IBM MobileFirst Platform IBM MobileFirst Protect SECURE & MANAGE DEVICES, APPS, CONTENT & TRANSACTIONS TRANSFORM YOUR BUSINESS IBM MobileFirst Solutions ENGAGE YOUR CLIENTS IN NEW WAYS IBM MobileFirst Engage 4
  • 5. Threats on your employees Threats on your customers of financial apps on Android have been hacked of Top 100 Android apps have been hacked annual cost of crime Security Threats 5
  • 6. Speeding the development, integration and management of mobile applications and infrastructure IBM MobileFirst Platform goes beyond mobile app UI creation to deliver mobile optimized, standards-based, middleware and tools for enterprise-grade mobile applications and services creation Accelerate Web, Native, and Hybrid Development • Rich infrastructure, enabling developer focus on business logic • Preview, simulation, and testing tools for shortening development lifecycle • Mechanisms to industrialize app development • Team work facilitation and development lifecycle tools Facilitate App Security and Trust • Server-enforced authentication • App authenticity and user-app-device binding • Secure and syncable on-device storage • App version enforcement Enable User Engagement • Mobile-friendly enterprise integration • Unified push and SMS notifications • Geo-location and context collections and intelligence • Mobile-friendly integration Support Mobile Operations • Operational analytics with efficient data acquisition • Offline and online event management integration • Remote user and app control without MDM "Best Mobile Development Solution" as voted by SIIA members for 2013 CODiE Awards IBM MobileFirst Platform 6
  • 7. MobileFirst Server Firewall Existing Integration Hub backend integration HTTP(S) Database WebService REST JMS MQ File FTP SAP Siebel : JDBC Web Service JMSJSON MobileFirst foundation server provides a single secure point of integration into the Enterprise that speeds integration and enables management of mobile solutions Enterprise Applications IBM MobileFirst SDK Enterprise Integration Eclipse, XCode, Visual Studio, Xamarin, Android Studio etc 7
  • 8. User Authentication • Plugs into existing enterprise security systems with a variety of authentication methods • Certificate-based, Touch ID, LDAP server, Social (oAuth) • Multi-factor authentication • Disable app version, specific user or devices through console App management  Version Enforcement  Remote Disable App Authenticity • Verify app identity; protect brand reputation, intellectual property, and back-end data Encrypt Local Data • Leverage user identity to encrypt and retrieve data stored locally on the device Application Scanning • Find code vulnerabilities complete with remediation assistance Protect enterprise data from mobile exploits Secure Mobile Apps 8
  • 9. Proactively enforce security updates Remote disable Direct update Provide robust authentication and authorization to secure users Authenticatio n integration framework Data protection realms Coupling device id with user id Streamline corporate security approval processes Mobile platform as a trust factor Protect from Known Application Security Threats Code obfuscation SSL with server identity verification Proven platform security Jailbreak and malware detection App authenticity testing Protect data on the device Encrypted cache / DB Offline authentication Secure challenge- response on startup IBM MobileFirst Platform: Security Features Mapping 9
  • 10. From multiple point-to-point integrations •Multiple sets of integrations to enterprise resources to build and maintain •YOU manage caching, synchronization and end- to-end encryption To streamlined, transparent access •MFP transforms enterprise data into mobile-friendly, JSON format •MFP Server manages caching, data synchronization and end-to-end encryption ERP Engine App DB HTTP (REST, SOAP), JMS SQL SAP HTTP, CAST IRON JSON MFP Adapters MFP SERVER ERP Engine App DB BlackberryApple BlackberryApple Controlled back-end integration using Adapters 10 Cloud Service Cloud Service
  • 11. Disable or Notify the end user 11
  • 12. IBM MobileFirst: Programmable Security Concepts Security Tests A security test defines a security configuration for a protected resource Authentication realms Resources are protected by authentication realms. Authentication processes can be interactive or non-interactive. Authenticators and login modules An authenticator collects client credentials. A login module validates them. 12
  • 13. <displayName>MyBankAdapter</displayName> <description>MyBankAdapter</description> <connectivity> <connectionPolicy xsi:type="http:HTTPConnectionPolicyType"> <protocol>http</protocol> <domain>rss.cnn.com</domain> <port>80</port> </connectionPolicy> <loadConstraints maxConcurrentConnectionsPerNode="2" /> </connectivity> <procedure name="getDriveLogin” securityTest="Adapter-securityTest” /> <procedure name="getAccounts” /> <procedure name="getTransactions” /> <procedure name="getTransferFunds” /> Adapters can point to security tests 13
  • 14. <securityTests> <customSecurityTest name="Adapter-securityTest"> <test realm="SampleAppRealm" isInternalUserID="true"/> </customSecurityTest> </securityTests> <loginModules> <loginModule name="StrongAuth"> <className>com.worklight.core.auth.ext.NonValidatingLoginModule</className> </loginModule> </loginModules> <realms> <realm name="SampleAppRealm" loginModule="StrongAuth"> <className>com.worklight.core.auth.ext.FormBasedAuthenticator</className> </realm> </realms> Security Configuration is under the project 14
  • 15. public override void HandleChallenge(WorklightResponse challenge) { Console.WriteLine ("We were challenged.. so we are handling it"); Dictionary<String,String > parms = new Dictionary<String, String> (); parms.Add ("j_username", "bigboss"); parms.Add ("j_password", "password"); LoginFormParameters = new LoginFormInfo ("j_security_check", parms, null, 30000, "post"); shouldSubmitLoginForm = true; } Code the app side challenge handler 15
  • 16. public async void Connect(){ //lets send a message to the server client.Analytics.Log("Trying to connect to server",metadata); ChallengeHandler customCH = new CustomChallengeHandler (appRealm); client.RegisterChallengeHandler(customCH); WorklightResponse task = await client.Connect (); //lets log to the local client (not server) client.Logger("Xamarin").Trace ("connection"); //write to the server the connection status client.Analytics.Log ("Connect response : " + task.Success); //return task; } Configure on connect to MobileFirst 16
  • 17. Public IP Admin Console Admin Service Mobile Browser Simulator Analytics Service Analytics Console Derby MFPF all inclusive starter container Cloudant DataProxyMFPF Run time Deployment on Bluemix Containers – Quick start 17 container registry image run
  • 19. local registry containers customers image dockerfile ubuntu image java runtime liberty runtime MFPF runtime Customers MFP projects ./prepareserverdbs.sh ./prepareserver.sh ./prepareanalytics.sh ./startserver.sh ./startanalytics.sh 1 2 3 4 Deployment of configurable image hub.docker.com 19
  • 20. Admin Console Admin Service MFPF Runtime MFPF Container Go Router Analytics Service Analytics Console Analytics Container Depends on Go Router Cloudant Dataproxy Database Service admin Configurable image topology 20
  • 22. Resources Home (documentation, blogs, downloads etc...) http://developer.ibm.com/mobilefirst MobileFirst Getting Started (ready made samples, tutorials etc) https://developer.ibm.com/mobilefirstplatform/documentation/getting-started-7-1/ IBM MobileFirst Support http://stackoverflow.com/questions/tagged/mobilefirst Quick Start on Bluemix http://ibm.co/1PdScm5 22