Abstract
The widespread adoption of Bring Your Own Device (BYOD) policies in corporate environments has introduced significant challenges related to securing corporate data while maintaining user privacy. As personal devices are increasingly used for work-related tasks, traditional device management solutions, which often require full control over the device, struggle to balance security needs with employee privacy concerns. These approaches are often met with resistance, as they impose restrictions on personal use, creating friction between the organisation's security requirements and the user's experience. This imbalance not only compromises user satisfaction but also increases the risk of data breaches and unauthorised access, particularly as corporate data becomes more vulnerable on personal devices. ShieldDroid Enterprise is proposed and seeks to address this problem by providing a comprehensive framework that leverages containerisation, mobile device management (MDM), and multifactor authentication (MFA) to secure corporate data without infringing on personal activities. Through the implementation of Android for Work, ShieldDroid Enterprise creates isolated work profiles that separate corporate data from personal information, offering a secure environment where sensitive data is protected. AirDroid MDM is integrated to manage and monitor these work profiles, enforcing security policies and ensuring compliance in real-time, all while preserving user privacy by restricting management to corporate data only. In addition, the framework incorporates multifactor authentication, which adds an extra layer of security by requiring multiple verification methods before accessing corporate resources. A comprehensive Proof of Concept (PoC) evaluation demonstrated that ShieldDroid Enterprise effectively addresses the challenges of BYOD environments, ensuring strong security without compromising device performance or user experience. This paper presents ShieldDroid Enterprise as a robust and scalable solution for enterprises looking to implement BYOD policies while safeguarding corporate data and respecting user privacy.