As security threats are rapidly disclosed and tooling becomes more efficient, it is necessary to keep a close watch on your endpoints. The ability to manage security risk, by assessing device vulnerabilities and applying security patches, is a necessity for any modern IT team or Security Operations Center (SOC).
With our Samsung Galaxy devices, we have been disclosing security vulnerabilities since October 2015. In the Android ecosystem, we committed to 5 years of security updates for our flagship devices starting with the Galaxy S21 (2021) family. We continue to improve our ability to consistently deploy security updates by working closely with Android ecosystem partners. These efforts have enabled enterprises to be more secure than ever with Samsung, and we are committed to iterating on these efforts.
At Samsung we believe in empowering the workplace of tomorrow by opening up numerous possibilities for businesses with versatile devices, optimized experiences, and comprehensive security. Our Z-series, S-series, A-series, and rugged portfolio of mobile endpoints are purpose-fit for each market segment.
With our rugged portfolio of XCover and Tab Active series of devices, enterprises are able to deploy our Samsung Galaxy endpoints in more use cases than ever before. Each one of these devices have a unique combination of device hardware and drivers, requiring the attention of enterprise IT admins to track specific drivers to specific security vulnerabilities.
To aid enterprise IT admins in this effort, we’ve taken a large step forward to improve the way we communicate security vulnerabilities here at Samsung Knox.
Today we released the first iteration of the Security Center for Knox Asset Intelligence as a Labs feature within Knox Asset Intelligence for all Enterprise customers. This feature enables granular tracking of device vulnerabilities across a fleet of supported Samsung devices, and provides visibility into the integrity status of devices routinely checked with Knox Attestation. This is an industry-leading solution to provide mapping of vulnerabilities at a chipset level, for individual device models of mobile devices.
Without an understanding of which hardware and drivers a device contains, customers have no method of accurately assessing the risk that chipset vulnerabilities pose to their device fleet, knowing which of their devices were impacted, or how to determine which devices could have been exploited in the wild.
Today, with Security Center for Knox Asset Intelligence deployed, customers will be able to know on patch release if their device is impacted by a vulnerability, and choose whatever action is best for their enterprise. When combined with an upcoming integration with Knox E-FOTA, Security Center for Knox Asset Intelligence will enable enterprises to make informed decisions on firmware updates. E-FOTA provides granular control over firmware updates by providing a forced update feature that applies the latest firmware containing day-zero patches more quickly and effectively.
Alternatively, enterprises may choose not to upgrade their fleet for a variety of reasons, such as enterprise app stability and compatibility, enterprise compliance, training, and device fleet maintenance. Combined with the Security Center information on potential risks affecting their devices, enterprises can have full control and visibility on the impact of firmware updates, and can make educated decisions on when to update their fleet.
As Samsung Knox continues to focus on the intersection of Zero Trust and Data Driven Intelligence, we are committed to improving the toolsets for Enterprises to manage the security of Samsung endpoints. Moving forward, we are continuing to refine this solution and improving upon other aspects related to security management. As with any Labs feature, there may be some bumps along the way, and we encourage any concerns be raised with your relevant Samsung Knox contact. Thank you again for your continued support of our products and we hope this product serves your enterprise well!