Samsung has announced KNOX 2.0, the evolution of KNOX, the company’s end-to-end secure mobile platform solution designed to provide advanced data and privacy protection for enterprise users.
According to the tech giant, the new features better support IT departments looking for reassurance and convenience as they implement and manage their Bring Your Own Device (BYOD) strategies.
Since October 2013 when KNOX was first commercially available in the market, Samsung has sold over 25 million KNOX-enabled devices and has more than one million active KNOX users today.
On average, 210,000 KNOX-enabled devices are being activated per month, which is about 7,000 devices each day.
“Thanks to the rapid adoption of KNOX over the past 5 months since it was first commercially available, we needed to evolve the Samsung KNOX platform to meet the changing needs of our customers and the enterprise as a whole,” says JK Shin, President and CEO, Head of IT & Mobile Communications Division at Samsung Electronics.
“As a leading provider of Android devices, it is our mission to make the Android platform even more secure to lead the enterprise mobility market.
"With the new features of KNOX 2.0 we are able to provide our users with a truly enterprise-ready mobile solution.
"We will continue to work hard and listen to both our partners and customers to constantly improve the KNOX platform to meet these ever- changing needs.”
Samsung says KNOX 2.0 offers a series of core platform security improvements to better protect device integrity from kernel to apps for a more secure, integrated mobile experience. These upgraded features include:
TrustZone-Protected Certificate Management:
Device-wide feature that generates and maintains client certificates inside Trustzone with additional support for industry standards such as PKCS#11; allows mobile devices to play the role of the smart card and its readers.
KNOX Key Store:
Generates and maintains encryption keys inside the TrustZone protected environment; allows third parties to utilise encryption for security sensitive applications and makes sure that encrypted data is protected if the system is compromised
Real-Time Protection for System Integrity:
Real-time monitoring that both detects and prevents any unauthorised modifications to the kernel code, critical kernel data and system partition.
Encrypts the data stored in the device through the TrustZone-protected encryption key, which can be disabled at the detection of system integrity compromise.
Two-factor Biometric Authentication:
Makes container access even more secure by requiring both password and fingerprint verification to authenticate.
Improved User Experience:
KNOX 2.0 provides users with enhanced container features, such as support for most Android apps from the Google Play Store, meaning there is no need to go through the wrapping process for third party apps.
KNOX 2.0 also supports SE Android policy configurations for third party containers, such as Good’s secure container, Fixmo’s SafeZone, MobileIron’s AppConnect so that these 3rd party containers will receive the same level of HW-based protection as the KNOX container receives.
"This evolution of KNOX allows for the choice of different types of containers for a more flexible approach to enterprise BYOD strategies," Shin adds.
"Besides, UMC and SEG make user enrollment process simpler than before since the user profile is pre-registered to SEG by MDM servers."
New features of KNOX 2.0 will be commercially available in Q2 2014. Once available, previous generation KNOX users will be able to upgrade to KNOX 2.0 after upgrading to KitKat. KNOX 2.0 will also come pre- installed on the newly launched Samsung Galaxy S5.