User's Guide to Telework and Bring Your Own Device (BYOD) Security.

摘要

Many people telework (also known as telecommuting), which is the ability for an organization’s employees, contractors, business partners, vendors, and/or other users to perform work from locations other than the organization’s facilities. Teleworkers use various devices, such as desktop and laptop computers, smartphones, and tablets, to read and send email, access websites, review and edit documents, and perform many other tasks. Most teleworkers use remote access, which is the ability of an organization’s users to access its non-public computing resources from locations other than the organization’s facilities. Organizations have many options for providing remote access, including virtual private networks, remote system control, and individual application access (e.g., webmail). Telework devices can be divided into two categories: personal computers (desktops, laptops) and mobile devices (e.g., smartphones, tablets). Each telework device is controlled by the organization, the teleworker, or a third party the teleworker is affiliated with (a contractor, business partner, or vendor for the organization). Telework devices controlled by the user are also known as bring your own device (BYOD). This publication provides recommendations for securing BYOD devices used for telework and remote access, as well as those directly attached to the enterprise’s own networks.