Definition

bring your own apps (BYOA)

Contributor(s): Ivy Wigmore

Bring your own apps (BYOA) is the trend toward employee use of third-party cloud application services in the workplace.

BYOA is an outgrowth of the bring your own device (BYOD) trend towards and the increasing consumerization of IT. Like it or not, employees are bringing the cloud apps they use on their personal devices to work. Popular consumer apps that are being used for business include Dropbox, CloudOn and Google Docs. Cited benefits of IT consumerization and the use of consumer applications include greater employee engagement and satisfaction as well as improved productivity.

As employee-owned technologies encroach upon the corporate network, however, security becomes increasingly problematic. Corporate data stored in a third-party cloud provider's environment is no longer under the control of the employee's IT department. If an employee's laptop with sensitive data is stolen, administrators can remotely wipe the hard drive but no such solution exists to protect the company in the event of a data breach in the cloud environment.

To deal with these and other issues, many organizations are implementing consumerization policies to establish acceptable use policies (AUP) for third-party software.

This was last updated in September 2014

Next Steps

Consumerization is changing how employees work and businesses operate. New authentication technologies and policies are required to meet the unique security challenges that the BYOA movement has brought to the enterprise. Learn how multifactor authentication and a layered defense can help prevent your data from accidently walking out the door. There are several types of multifactor authentication technologies from which to choose and other defense mechanisms such as application sandboxing and mobile application distribution platforms security pros can consider. To learn more about MFA, read our comparison of MFA tools to evaluate products and learn about making the case for MFA.

Continue Reading About bring your own apps (BYOA)

Learn about how two-factor authentication lends itself to BYOA

Comparing MDM vs. MAM mobile security management

Jon Oltsik writes about how enterprises should take advantage of the consumerization of authentication

BYOA: Challenges and caveats for controlling the flood of personal apps

BYOA is here: Six steps to making mobile apps enterprise-ready

Prevent BYOA headaches with clear communication and careful monitoring

Dig Deeper on Web authentication and access control

Margaret Rouse asks:

What policies do you think are important for employee use of third-party apps?

Join the Discussion

SearchCloudSecurity

Defining and evaluating SOC as a service

As cloud use increases, many enterprises outsource some security operations center functions. Evaluate if SOCaaS is the best ...

Get to know the elements of Secure Access Service Edge

Cloud services use cases continue to expand, but implementation challenges remain. Discover Secure Access Service Edge, or SASE, ...

Boost security with a multi-cloud workload placement process

IT must incorporate a multi-cloud workload placement process into its multi-cloud strategy in order to maintain or improve cloud ...

SearchNetworking

CloudGenix-Palo Alto buy combines SD-WAN with cloud security

The CloudGenix-Palo Alto Networks acquisition will combine the Prisma cloud security suite with CloudGenix's software-defined WAN.

A deep dive into the differences between 5G and Wi-Fi 6

While the latest cellular and Wi-Fi technology generations -- 5G and Wi-Fi 6, respectively -- have been pitted against one ...

Maintaining network infrastructure in a pandemic and beyond

Network infrastructure that supports remote workers is essential today and will be far into the future. That includes VPN ...

SearchCIO

How IT can build an agile business partnership

Gene Kim, award-winning researcher, author and founder of IT Revolution, discusses why IT leaders need to involve their ...

Former Cisco CEO offers C-suite leadership tips in time of crisis

COVID-19 is forcing enterprises to make tough decisions. There is no one-size-fits-all roadmap, but those who've survived earlier...

COVID-19 radically refocuses CIO agendas in 4 key areas

As a result of the COVID-19 virus, CIOs must shift their priorities and now focus on the impact the pandemic has on the economy, ...

SearchEnterpriseDesktop

How CMT, MDM and EMM merged into UEM software

The differences between CMT, MDM, EMM and UEM can be confusing. Learn how they differ and how vendors offer these capabilities in...

How to enable and troubleshoot fast startup in Windows 10

The fast startup feature on Windows desktops can add value, but IT must understand when it should and shouldn't enable this ...

4 negotiation tactics for success in a Microsoft software agreement

A Microsoft software agreement requires skill and knowledge. Use these four Microsoft negotiation tactics to get the best ...

SearchCloudComputing

Explore the pros and cons of cloud computing

Familiarize yourself with the basics of computing in the cloud, how the market has changed over the years, and the advantages and...

How to protect and manage Azure Pipelines secrets with Key Vault

Follow along with this Azure Key Vault tutorial to securely manage passwords and other sensitive information in an Azure DevOps ...

7 Google Cloud database options to free up your IT team

Moving data to a cloud database is an effective way to optimize cost and performance for applications. Review seven of Google's ...

ComputerWeekly.com

Covid-19 crisis shows fragility of food supply system

Food system is “incredibly interdependent, but also incredibly disconnected”, says Richard Tiffin, chief scientific officer at ...

Jack Schofield, tech journalist and Computer Weekly contributor, dies

In his Computer Weekly articles, Schofield discussed the early success of the web, why the BlackBerry should be waterproof, and ...

Coronavirus: Ofcom relaxes ISPs’ broadband obligations

UK comms regulator loosens operating guidelines on broadband operators to prevent driving additional traffic to call centres and ...

Join the conversation

2 comments

Send me notifications when other members comment.

Oldest

[-]

Margaret Rouse - 8 Sep 2014 8:42 AM

What policies do you think are important for employee use of third-party apps?

carol482 - 20 Feb 2015 10:05 AM

Instituting policies that ensure any third-party apps used within the social network infrastructure include checking on what privacy rights are waived with the third-party app that the social network has no control over. Also important for us having a policy that restricts use of games and other apps that gather user information and ad based behavioral habits. A policy of "no click" on advertisement is an important policy for third-party app use with our company.