Gartner: Quarter of enterprises to create app store in next five years

Bring your own app (BYOA) trend creating security headaches for IT staff

A quarter of all enterprises will create their own app store in the next five years, according to a report from analysts at Gartner, as IT staff seek to manage the threat posed by the growing bring your own app (BYOA) trend.

As bring your own device (BYOD) schemes gain traction, employees are increasingly able to access software apps through public stores such as Apple's App Store and Google Play, creating potential problems for IT security. In order to manage the security risks, Gartner predicts that 25 percent of large organisations will introduce their own internally managed app store by 2017, as they seek to gain more control over software accessed through employee's smartphones and tablets.

"Apps downloaded from public app stores for mobile devices disrupt IT security, application and procurement strategies," said Ian Finley, research vice president at Gartner. "Bring your own application (BYOA) has become as important as bring your own device (BYOD) in the development of a comprehensive mobile strategy, and the trend toward BYOA has begun to affect desktop and Web applications as well."

The report notes that there are a number of benefits of introducing an entrpise app store aside from greater security, such as in the procurement of software. As well as automating the procurement of enterprise software licenses, it could put companies in a better position to negotiate license terms with suppliers, the report claims.

"Enterprise app stores enable procurement to broaden user choice by encouraging providers to submit competing apps, and to monitor demand for popular apps that may benefit from better negotiation of license terms and prices," said Stewart Buchanan, research vice president at Gartner.

In addition, IT staff could benefit from feedback for specific apps, and gain an oversight of the popularity of individual apps.

It is already possible to provision apps to employees using existing mobile device management (MDM) systems, but many enterprises are already looking to offer a wider range of apps.

"Today, most MDM providers have a simple way of extending apps to mobile devices, usually through a basic agent on the device," said Finley, "but many are launching more-sophisticated app stores that can host enterprise and third-party apps to be accessed by smartphones, tablets and PCs."

The main stumbling block around the introduction of enterprise app stores is that a large enough choice will need to be offered to employees, or they could revert to public app stores for certain software. This could cancel out the security benefits of an internally curated enterprise app store.

"The implementation of an enterprise app store should be seen as a component of an organisation's application strategy, rather than infrastructure strategy," said Brian Prentice, research vice president at Gartner. "The primary determinant of success is app supply."

He continued: "As a result, application leaders should be given overall responsibility for any app store initiative, but they should work in a collaborative fashion with other teams. The types of apps downloaded and used provide important information as to what types of solutions are of value to each type of user."

Join the CSO newsletter!

Error: Please check your email address.

Tags Mobile & WirelessAppleGartnerapplicationsGooglesecuritysoftware

More about AppleGartnerGoogle

Show Comments

Featured Whitepapers

Editor's Recommendations

Solution Centres

Stories by Matthew Finnegan

Latest Videos

  • 150x50

    CSO Webinar: The Human Factor - Your people are your biggest security weakness

    ​Speakers: David Lacey, Researcher and former CISO Royal Mail David Turner - Global Risk Management Expert Mark Guntrip - Group Manager, Email Protection, Proofpoint

    Play Video

  • 150x50

    CSO Webinar: Current ransomware defences are failing – but machine learning can drive a more proactive solution

    Speakers • Ty Miller, Director, Threat Intelligence • Mark Gregory, Leader, Network Engineering Research Group, RMIT • Jeff Lanza, Retired FBI Agent (USA) • Andy Solterbeck, VP Asia Pacific, Cylance • David Braue, CSO MC/Moderator What to expect: ​Hear from industry experts on the local and global ransomware threat landscape. Explore a new approach to dealing with ransomware using machine-learning techniques and by thinking about the problem in a fundamentally different way. Apply techniques for gathering insight into ransomware behaviour and find out what elements must go into a truly effective ransomware defence. Get a first-hand look at how ransomware actually works in practice, and how machine-learning techniques can pick up on its activities long before your employees do.

    Play Video

  • 150x50

    CSO Webinar: Get real about metadata to avoid a false sense of security

    Speakers: • Anthony Caruana – CSO MC and moderator • Ian Farquhar, Worldwide Virtual Security Team Lead, Gigamon • John Lindsay, Former CTO, iiNet • Skeeve Stevens, Futurist, Future Sumo • David Vaile - Vice chair of APF, Co-Convenor of the Cyberspace Law And Policy Community, UNSW Law Faculty This webinar covers: - A 101 on metadata - what it is and how to use it - Insight into a typical attack, what happens and what we would find when looking into the metadata - How to collect metadata, use this to detect attacks and get greater insight into how you can use this to protect your organisation - Learn how much raw data and metadata to retain and how long for - Get a reality check on how you're using your metadata and if this is enough to secure your organisation

    Play Video

  • 150x50

    CSO Webinar: How banking trojans work and how you can stop them

    CSO Webinar: How banking trojans work and how you can stop them Featuring: • John Baird, Director of Global Technology Production, Deutsche Bank • Samantha Macleod, GM Cyber Security, ME Bank • Sherrod DeGrippo, Director of Emerging Threats, Proofpoint (USA)

    Play Video

  • 150x50

    IDG Live Webinar:The right collaboration strategy will help your business take flight

    Speakers - Mike Harris, Engineering Services Manager, Jetstar - Christopher Johnson, IT Director APAC, 20th Century Fox - Brent Maxwell, Director of Information Systems, THE ICONIC - IDG MC/Moderator Anthony Caruana

    Play Video

More videos

Blog Posts