Analytics
6/19/2012
10:03 PM
Connect Directly
Google+
Twitter
RSS
E-Mail
50%
50%
Repost This

Gen Y Blows Off Mobile Security Policy

Twenty-somethings worldwide expect to BYOD, and most say it's a right, not a privilege

Twenty-somethings expect to be able to BYOD to work: One in three say they would disregard their company's security policy if it forbade them to use their personal mobile devices at the office.

A survey conducted by Vision Critical on behalf of Fortinet between May 31 and June 12 asked more than 3,800 fully employed 20- to 29-year-olds worldwide with their own smartphones, tablets, or laptops about their views on bring-your-own device (BYOD) trends. About 75 percent of them say BYOD is commonplace, and 55 percent say using their mobile device at work is a "right" versus a "privilege."

Some 36 percent said they either have or would break company policy banning BYODs, and 30 percent also say they have or would do the same for any unapproved applications at work. Nearly 70 percent say they are interested in creating and running custom apps at work.

The draw of BYOD is access to text messaging and social networks, the survey found. Around 35 percent say they use social media every day, and 47 percent use SMS.

Interestingly, 42 percent of the Gen-Y users say BYOD's biggest risk to an organization is data loss and exposure to malicious cyberthreats. And 66 percent say they are responsible for the security of their devices, not their companies, while 22 percent say it's their companies' job.

Patrice Perche, international vice president of international sales and support for Fortinet, says the survey shows the big challenges for organizations trying to balance BYOD and security. “While users want and expect to use their own devices for work, mostly for personal convenience, they do not want to hand over responsibility for security on their own devices to the organization," Perche says. "Within such an environment, organizations must regain control of their IT infrastructure by strongly securing both inbound and outbound access to the corporate network and not just implement mobile device management or ‘MDM.’”

Have a comment on this story? Please click "Add Your Comment" below. If you'd like to contact Dark Reading's editors directly, send us a message.

Kelly Jackson Higgins is Senior Editor at DarkReading.com. She is an award-winning veteran technology and business journalist with more than two decades of experience in reporting and editing for various publications, including Network Computing, Secure Enterprise Magazine, ... View Full Bio

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
CBEAUREGARD481
50%
50%
CBEAUREGARD481,
User Rank: Apprentice
7/30/2012 | 7:13:08 PM
re: Gen Y Blows Off Mobile Security Policy
I agree. Since whenit it your right to use the corporate network as you please or to put the company's asset at risk for your convenience?
Bprince
50%
50%
Bprince,
User Rank: Ninja
6/30/2012 | 11:32:15 PM
re: Gen Y Blows Off Mobile Security Policy
People are going to do whatever is convenient and allows them to get their job done. But a "right?" I think that's going a bit too far.
Brian Prince, InformationWeek/Dark Reading Comment Moderator
Register for Dark Reading Newsletters
White Papers
Cartoon
Current Issue
Video
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2013-1421
Published: 2014-04-22
Cross-site scripting (XSS) vulnerability in Craig Knudsen WebCalendar before 1.2.5, 1.2.6, and other versions before 1.2.7 allows remote attackers to inject arbitrary web script or HTML via the Category Name field to category.php.

CVE-2013-2105
Published: 2014-04-22
The Show In Browser (show_in_browser) gem 0.0.3 for Ruby allows local users to inject arbitrary web script or HTML via a symlink attack on /tmp/browser.html.

CVE-2013-2187
Published: 2014-04-22
Cross-site scripting (XSS) vulnerability in Apache Archiva 1.2 through 1.2.2 and 1.3 before 1.3.8 allows remote attackers to inject arbitrary web script or HTML via unspecified parameters, related to the home page.

CVE-2013-4116
Published: 2014-04-22
lib/npm.js in Node Packaged Modules (npm) before 1.3.3 allows local users to overwrite arbitrary files via a symlink attack on temporary files with predictable names that are created when unpacking archives.

CVE-2013-4472
Published: 2014-04-22
The openTempFile function in goo/gfile.cc in Xpdf and Poppler 0.24.3 and earlier, when running on a system other than Unix, allows local users to overwrite arbitrary files via a symlink attack on temporary files with predictable names.

Best of the Web