The number of headline-grabbing data security breaches has grown in recent years. Many of these disasters in the past year were the result of the loss or security breach of mobile devices. As a result, IT managers need to find ways to securely manage these devices more than ever before.

Mobile device management (MDM) is software that allows IT administrators to control, secure and enforce policies on smartphones, tablets and other endpoints.

MDM is a core component of enterprise mobility management (EMM) which also includes mobile application management, identity and access management and enterprise file sync and share. The intent of MDM is to optimize the functionality and security of mobile devices within the enterprise while simultaneously protecting the corporate network.

Mobile device management relies on endpoint software called an MDM agent and an MDM server that lives in a data center (either on premises or in the cloud).

IT administrators configure policies through the MDM server’s management console, and the server then pushes those policies over the air to the MDM agent on the device. The agent applies the policies to the device by communicating with application programming interfaces (APIs) built directly into the device operating system.

Common mobile device management features includes device inventory and tracking, app distribution , password enforcement , app whitelisting , blacklisting,  data encryption enforcement, locate, lock, and potentially wipe lost/remote  devices.

Traditional security solutions such as network firewalls, intruder detection systems (IDS), and intrusion prevention systems (IPS) are good at stopping illegitimate traffic and providing network-level security. But they don’t have the ability to detect and stop SQL injection, session hijacking, cross-site scripting (XSS) and other attacks resulting from vulnerabilities inherent in web applications.

A WAF is differentiated from a regular firewall in that a WAF is able to filter the content of specific web applications while regular firewalls serve as a safety gate between servers. By inspecting HTTP/S traffic, it can prevent attacks stemming from web application security flaws, such as SQL injection, cross-site scripting (XSS), file inclusion, and security misconfigurations.

A Web application firewall (WAF) monitors, filters or blocks data packets as they travel to and from a Web application. A WAF can be either network-based, host-based or cloud-based and is often deployed through a proxy and placed in front of one or more Web applications. Running as a network appliance, server plug-in or cloud service, the WAF inspects each packet and uses a rule base to analyze Layer 7 web application logic and filter out potentially harmful traffic.