According to Apple, iOS 7 provides enhanced security, powerful new ways to configure and deploy devices at scale, and features to help businesses purchase, distribute, and manage apps with ease.
It seems that iOS 7 aims to protect corporate data by controlling which apps and accounts are used to open documents and attachments. Managed open in gives IT the ability to configure the list of apps available in the sharing panel. This keeps work documents in corporate apps and also prevents personal documents from being opened in managed apps.
It should help to prevent leakage of data as it provides the ability to control which apps an iOS 7 device uses to open a document, through managed apps. Prior to this, you could basically use any app to document which was a security risk.
Apps can now be configured to automatically connect to VPN when they are launched. Per app VPN gives IT granular control over corporate network access. It ensures that data transmitted by managed apps travels through VPN — and that other data, like an employee’s personal web browsing activity, does not.
Previously, enabling the VPN meant the entire device would have access to the businesses back-end systems via the VPN connection—posing again leading to security risks. Through supported VPNs from the likes of Cisco and Juniper, VPN connections can now be launched at an app level. This allows for the first time the separation of business and personal use case scenarios on an iOS device. It also gives the IT dept greater fine grained control.
The App Store Volume Purchase Program now enables assignment of apps to their users while keeping full control over app licenses. Companies purchase app licenses through the VPP website, and can use their MDM solution to assign apps to employees over the air. Employees can enroll with their personal Apple IDs and Apps can be revoked at any time and reassigned to other employees.
The MDM protocol in iOS 7 includes more commands and configuration options for third-party MDM solutions. Particularly welcome will be the ability to wirelessly set up managed apps and AirPrint printers. Here Apple seem to be offering MDM APIs to vendors to take advantage of iOS in providing application-level security more tightly than before.
Institutionally-owned devices can be automatically enrolled in MDM during activation so as to speed up the process dramatically. It can now supervise devices over the air enabling additional controls for highly managed deployments.
Enterprise single sign (ESO) means user credentials can be used across apps so that for instance, users can login in without requiring them to re-enter passwords. Third-party apps now have data protection enabled automatically, so information stored in App Store apps is protected with the user’s passcode until they first unlock their device after each reboot.
Other aspects include a whole new design and use of new system-wide gestures to make Mail easier to use than ever. New features include the ability to add and reorganize smart mailboxes in the mailbox list, view PDF annotations, and redesigned search. Users can store sensitive information like passwords, account names and credit card numbers in the iCloud so that the OS can automatically fill them in when signing in to a website. It also syncs across other iOS 7 devices and the desktop operating system OS X Mavericks.
Regarding more flexible sharing, Airdrop allows making an iOS device available to anyone, only to people present in your Contacts list, or to disable it entirely. It works in many apps. Mobile Safari has been improved for browsing with more space savings. New gesture controls have also been introduced here. The bookmarks page has also been updated, dropping the folder design for a tabbed interface that allows jumping between your bookmarks.
Mail is updated to make it easier to view and sort mail and manage conversations. Here again, swiping from left to right anywhere in the app will take you back up to the previous screen and other gestures are included too. Calendars has three views that offer differing levels of zoom. Reminders has also been improved in ways that should make them easier to organize. Location based reminders also. Non-authorised lightning cables now display a warning – that is all however…
It is also worth pointing out that some internal apps or mobile device management (MDM) solutions may not yet be compatible, so it actually might still be a little early for businesses to migrate over as some users might find themselves barred from their corporate network.