Dimitry Chastuhin

Introduction to MDM solutions and SAP Afaria

Bring your own device (BYOD) tendency is changing the way IT is managed, delivered, and, most importantly, secured. BYOD encourages a company’s employees to work on devices they prefer. So, modern organizations and enterprises may either supply their employees with multi-function mobile devices or allow staff to bring their own handhelds of different types. BYOD sometimes includes specific concepts like bring your own computer (BYOC), bring your own laptop (BYOL), bring your own apps (BYOA), and bring your own PC (BYOPC).

Read more

SAP Afaria Security: Stored XSS vulnerability – detailed review

Today we will talk about SAP Afaria Security. We will show how SAP Afaria, an MDM solution from a world-famous software vendor, works and how cybercriminals can attack it in different ways using Stored XSS vulnerability.

In a nutshell, MDM is a set of services that help an administrator of a large company to control the mobile devices (smartphones, tablets, phablets and so on and so forth) of employees, thus establishing the security measures of corporate data stored and processed on those devices. A special application called MDM client is installed on a device and allows administrators to implement settings.

Read more

SAP Passwords. Part 2: SAP HANA Security Storage. How it works

In our previous article we’ve already covered how SAP ABAP Security Storage works. Today’s post is dedicated to SAP HANA Security Storage.

SAP HANA is a recent key product of SAP. It is a software solution based on the in-memory technology, that reduces the time of the data processing significantly.

This product has obviously caused an excitement among large enterprises interested in processing their data in real time. We do not doubt that SAP HANA is capable of processing big data. However, the cybersecurity of critical data companies stored in SAP HANA deserves attention.

Read more

SAP Mobile Platform Security: Introduction

Mobile devices are actively integrated into business processes nowadays. Companies use more and more business applications and mobile devices. Employees increasingly bring their own equipment to the workplace (BYOD policy – Bring Your Own Device) and gain access to the critical corporate information.

SAP Mobile Platform (or SMP, formerly Sybase Unwired Platform, or SUP) is a mobile enterprise application platform (MEAP) solution. SMP is used for monitoring and controlling applications, which are installed on mobile phones and have access to business data. The main aim of SMP is providing business data to mobile devices with the enterprise cybersecurity. The platform capabilities allow users to work with data from SAP business applications using mobile apps both online and offline. This data can be accessed through all modern mobile devices. Android, Blackberry, iPhone / iPad and Windows / Windows Mobile devices are used by end users. Installed client applications are connected to SMP. These programs can be found on Play Market, Apple Store, or Windows Store.

Read more

SAP Passwords. Part 1: ABAP Secure Storage. How it works

This is the first entry in our blog series dedicated to passwords in SAP systems. We will discuss how different passwords are stored in systems, how they are protected and transmitted. It seems easy at first glance: passwords should be stored in a database. Of course this is true for regular users: their passwords are stored in databases as hashes. But it’s not that simple for the service users of SAP systems.

Read more