Data Storage Security
Data is stored both on the SAP NetWeaver Mobile client and on the Data Orchestration Engine (DOE).
The SAP NetWeaver Mobile client does not protect the stored data actively. Since the client device can be easily stolen or lost, data security is crucial. The following measures increase the data security on your client device.
· On Microsoft Windows Win32 platforms, use encryption software to encrypt the entire directory structure in which the data for the SAP NetWeaver Mobile client is stored, thus protecting it from unauthorized access. You must decrypt the data again before working with SAP NetWeaver Mobile client.
Currently, client devices such as PDAs do not distinguish strictly between main storage and file systems. Code fragments could, therefore, remain in main storage, affecting the entire encryption. In this case, the use of encryption software does not offer the same security as on Microsoft Windows Win32 platforms.
● Use antivirus software and update the virus databases at regular intervals.
● Only install trustworthy software. External software that is not trustworthy could manipulate the application data of the client without your noticing it.
● If available, use the password or PIN protection for operating systems.
● If the device is lost, you should immediately lock the user in the SAP NetWeaver Mobile Administrator to prevent unauthorized access to the system and then change the user’s password.
● A client device can be used by one or more users.
○ If the device is used by one user, this user is responsible for the device and must make sure that nobody accesses the device without authorization.
○ If more than one user is using the device, these users must trust one another. Without the support of the operating system, it is not possible to protect user data from being accessed by other users of the operating system.
The following topics provide more specific measures depending on the type of the client device (laptops or PDAs).