Bittium Secure Suite - The infrastructure you can trust
The Bittium Secure Suite is the perfect complement to the Tough Mobile smartphone hardware: A device and server side software solution that enables the unique Tough Mobile features through a set of scalable services, designed from the ground up to earn your trust. All services can either be securely hosted by a trusted operator, or be operated under your control on your secure premises, without requiring Internet connectivity or trust in third parties or cloud services.
Bittium Secure Suite overview
Device Management - Manage and control your device fleet efficiently.
Mobile VPN - Secure your network traffic with Bittium SafeMove VPN.
Secure push messaging Allow your apps to reach your devices without the risks of public clouds.
Remote attestation - Ensure your device integrity by remotely attesting them before granting access to mission critical information.
Enterprise App Library only make available the applications you approve for your users.
Log server Collect an undeniable audit trail from your devices and server components.
OTA firmware update keep up-to-date with latest updates for Bittium Tough Mobile.
SafeMove Device Management Features
Remote policy update (push)
SafeMove VPN policy management
Retrieve device audit log
Manage trusted CA certificates
List installed software and apps
SafeMove Device Policy
Device lock password policy:
Numerical, alphanumeric, complex
Device wipe after failed password entry
Device lock timeout
Password expiration time
Software from untrusted sources
Android Debugging Bridge (ADB)
MMS send and receive
SafeMove VPN Features
Integrated firewall and IPsec policy
Always-on, cannot be bypassed by apps or user.
Require successful remote attestation for VPN access.
Extensively tested and externally audited code base.
SafeMove VPN Crypto
NSA suite B compatible
Elliptic curve cryptography:
ECDH groups 19, 20, 21
RSA keys up to 16k
Familiar API, similar to common cloud messaging systems
Low power requirements
Can be hosted on customer premises
TLS security and optionally VPN.
Key hardware and software components integrity checked remotely via TPM (Trusted Platform Module).
Integration to VPN access control
API for integrating to third party services
Enterprise App Library
Managed private application store for providing applications to the device