What data is used in the Strategy Library Mobile app?
The Strategy Library Mobile application provides many viewing features for our business users, and is built on top of the Strategy platform. Here at Strategy, we ensure that all data is secure and protected for our users.
There are extensive data communications among mobile applications and platform services (the Library server, the Intelligence server, the Collaboration server, etc.). That being said, there are many types of data both consumed and generated by mobile application.
For example and with regards to the Strategy Library application, there might be specific configuration data (settings, preferences), user management data (user id, info, privilege), document data (definition of document and dataset) and other types of data supporting various features (manipulation data, transaction inputs, cache information, library list, etc.).
To enhance overall speed and performance, as well as support offline capabilities, data is stored on device local storage. For this storage, Strategy follows the Apple and Google guidelines regarding how data should be persisted. For reference:
Data Protection and Encryption
Mobile devices include a variety of security features designed to protect data stored on the device itself, which enhance the security of a mobile computing or BI implementation. Strategy Library Mobile takes full advantage of the security features available within iOS.
iOS provides hardware-based encryption. A Strategy application running under iOS encrypts data to the file system using AES 256 bit encryption. Encryption is always enabled and cannot be disabled by users.
We are also relying on Android device support to encrypt data using hardware encryption. The encryption algorithm is AES 128 bit or AES 256 bit depending on Android OS version.
Strategy Library Mobile App Security
Strategy Library Mobile effectively takes advantage of Apple and Android operating system features to secure the actual app running on the mobile device.
Data Transmission
Secure data transfer between Strategy Library Mobile apps and the Library server involves secure internet transfer connections and secure communication channels.
Strategy Library Mobile apps support HTTPS. HTTPS is a combination of the HTTP protocol with the SSL (Secure Socket Layer)/TLS (Transport Layer Security) protocol. It provides encryption and secure identification of the server. Essentially, HTTPS provides a secure channel over an unsecured network. If an organization wants to ensure data security by establishing a secure and encrypted connection between Strategy Library Mobile apps and the Library server, the Library server should be configured to receive requests only over the HTTPS protocol.
Secure communication channels are important when it comes to data transfer. Data can be transferred by placing the Library server behind a firewall and using a VPN (Virtual Private Network) connection to retrieve data using Strategy Library Mobile apps, regardless of the transfer protocol or wireless network to which they are connected.
The VPN connection creates a secure communication channel between the Strategy Library Mobile app and the Library server. A VPN set up between the mobile device and the Strategy platform will provide the strongest security available for communications with devices.
Authentication
Strategy Library Mobile follows the “defense in depth“ approach, which calls for several layers of security throughout an IT system. Strategy provides several layers of authentication and password control. When opening a Strategy Library Mobile app, the app performs credential validation. Strategy offers various authentication methods—in addition to third-party single sign-on, including industry standard like SAML and OpenID connect.
Authorization
Authorization refers to the three-dimensional process by which the app determines app functionality privileges, object access permissions, and data access security.
Strategy Library Mobile utilizes the same sophisticated user authorization management framework available in the Strategy Analytics Platform. This framework uses security filters to distinguish between users based on each individual’s knowledge, business needs, and security level, allowing for more secure and organized data access.
Each user’s access to app functionality, reports, and data within those reports is managed dynamically based on their profile and privileges. As a result, data security is maximized while every user benefits from a personalized app experience, tailored for their particular organizational role. For example, one report is used by the CEO to view sales data for all products. A regional manager may view the same report but may only be able to view data related to the multiple production lines in his jurisdiction, while a national production manager may only have access to the data about the product line he/she manages. Thus, a single report with specific authorizations can satisfy the reporting needs of all these individuals. Learn more about creating users and user groups.
Enterprise Mobility Management (EMM)
Strategy Library Mobile features state-of-the-art security that, in most cases, requires no further integration with third-party solutions to deliver enterprise-class security. In terms of mobile app security, customers have everything they need within the Strategy platform: encryption of data in transit and at rest, credential management, user-level security controls across data and objects, and more.
However, many organizations decide to use a third-party enterprise mobility management (EMM) solution to govern various aspects of workforce mobile devices, applications, and services—including updates, access settings, device restrictions, or password protocols.
Strategy Library Mobile app supports out-of-the-box integration with major EMM vendors through AppConfig. In addition, users can implement more advanced management (like MAM) through our SDK integration with specific vendor's EMM SDK. Get more information on Library Mobile SDK.
For any further questions, please reach out to your account representative or Strategy Support.
