App wrapping compiles extra code around an existing app,
by providing security features that control specific app functions.
App wrapping features list
Table 1. Device
and user identity and access
| Feature name |
Feature description |
Benefit |
| Single sign-on |
Allows users to use a single PIN to access to any app in the
container. |
Users sign on with a simple container PIN and stay logged in
until the login time lapses. |
Table 2. Security and compliance
| Feature name |
Feature description |
Benefit |
| Compliance enforcement |
Sets up policies for user and device compliance and enforces
restrictions on apps for non-compliant devices. |
Detects user and device compliance events and automatically
enforces restrictions on apps, such as blocking user access to an
app. |
| Restrict access on jailbreak |
Detects jail-broken devices and restricts user access to an
app. |
Detects jailbreaks and immediately restricts the user from
accessing an app. |
| Restrict access after long periods of inactivity |
Restricts access to the app if the app is inactive for a stipulated
time. |
Enforces authentication to an app after a specified login period
expires. |
| Restrict access on selective wipe |
Restricts access to the app if the device is selectively wiped
due to non-compliant events. |
Sends an alert when the admin starts a selective wipe to protect
or delete corporate data within the app. |
Table 3. Data protection features
| Feature name |
Feature description |
Benefit |
| Data encryption |
Enforces maximum security for the app data at rest and in motion. |
Encrypts the metadata for the app, the app database, and all
the files that are in use for the app for more security. |
| Restrict cut, copy, or paste |
Allows cut, copy, or paste only within the set of containerized
apps. |
Restricts the user from copying or pasting documents from within
the container to a personal app. |
| Restrict file export |
Restricts the exporting of files to only allowed apps. |
Prevents the leakage of files and allows files to be opened in a set of allowed and
containerized applications. Users cannot export files to other apps. |
| Restrict printing |
Restricts the printing of files, if enabled. |
Prevents leakage of data from printing. Users cannot print
from the wrapped app. |
Table 4. Enterprise Gateway
features
| Feature name |
Feature description |
Benefit |
| Per-app VPN |
Establishes gateway access for the app to access resources
behind the corporate firewall. |
Provides app-level intranet access without a device-level VPN.
Encrypts data in motion. Reduces VPN traffic since only corporate
apps fetch data through the gateway, while all personal apps directly
access the internet. |
| Regional gateway support for per-app VPN |
Uses a regional MaaS360® gateway
for the per-app VPN based on the geographic location of the user. |
Allows users to access data faster due to reduced network latency. |
| Corporate Network Detect |
Uses direct access and skips the per-app VPN in the corporate
network. |
Allows users to access data faster through direct access to
corporate resources while in the corporate network. |
Table 5. User productivity
| Feature name |
Feature description |
Benefit |
| App configuration |
A configuration file with required inputs is passed from MaaS360 and delivered securely
to the app. |
Provides a better user experience because the app is preconfigured.
App configurations are used to dynamically pass certain configurations
to the app that the app can consume internally for its own functions.
The configuration input can contain customer attributes. |
Table 6. Interaction with MaaS360
WorkPlace
| Feature name |
Feature description |
Benefit |
| Send MaaS360 email |
Sends email using the IBM®
MaaS360 Mail app. |
Users can send email from your app with IBM
MaaS360 Mail. |
| Save documents in the MaaS360 app |
Securely saves a document in the MaaS360 app. |
Users can save documents securely from any app into the My
Docs section of the container. |
| Open links in the IBM
MaaS360 Browser |
Opens links from apps in the IBM
MaaS360 Browser. |
Users are directed to the IBM
MaaS360 Browser to
open URLs displayed in apps, including intranet sites, without a device-level
VPN. |