Definition

bring your own apps (BYOA)

Contributor(s): Ivy Wigmore

Bring your own apps (BYOA) is the trend toward employee use of third-party cloud application services in the workplace.

BYOA is an outgrowth of the bring your own device (BYOD) trend towards and the increasing consumerization of IT. Like it or not, employees are bringing the cloud apps they use on their personal devices to work. Popular consumer apps that are being used for business include Dropbox, CloudOn and Google Docs. Cited benefits of IT consumerization and the use of consumer applications include greater employee engagement and satisfaction as well as improved productivity.

As employee-owned technologies encroach upon the corporate network, however, security becomes increasingly problematic. Corporate data stored in a third-party cloud provider's environment is no longer under the control of the employee's IT department. If an employee's laptop with sensitive data is stolen, administrators can remotely wipe the hard drive but no such solution exists to protect the company in the event of a data breach in the cloud environment.

To deal with these and other issues, many organizations are implementing consumerization policies to establish acceptable use policies (AUP) for third-party software.

This was last updated in September 2014

Next Steps

Consumerization is changing how employees work and businesses operate. New authentication technologies and policies are required to meet the unique security challenges that the BYOA movement has brought to the enterprise. Learn how multifactor authentication and a layered defense can help prevent your data from accidently walking out the door. There are several types of multifactor authentication technologies from which to choose and other defense mechanisms such as application sandboxing and mobile application distribution platforms security pros can consider. To learn more about MFA, read our comparison of MFA tools to evaluate products and learn about making the case for MFA.

Continue Reading About bring your own apps (BYOA)

Learn about how two-factor authentication lends itself to BYOA

Comparing MDM vs. MAM mobile security management

Jon Oltsik writes about how enterprises should take advantage of the consumerization of authentication

BYOA: Challenges and caveats for controlling the flood of personal apps

BYOA is here: Six steps to making mobile apps enterprise-ready

Prevent BYOA headaches with clear communication and careful monitoring

Dig Deeper on Web authentication and access control

Margaret Rouse asks:

What policies do you think are important for employee use of third-party apps?

Join the Discussion

SearchCloudSecurity

How to build a cloud security operations center

To better protect workloads and data in the cloud, security operations centers collaborate with various IT teams. Learn how to ...

How to prepare for a zero-trust model in the cloud

Zero-trust security in the cloud is different than it is on premises. Learn the concepts and policies to effectively achieve a ...

How enterprise cloud VPN protects complex IT environments

Do you know how enterprise cloud VPN differs from a traditional VPN? Explore how cloud VPN works and whether it's the right ...

SearchNetworking

The power and plights of female network engineers

Impostor syndrome burdens female network engineers, due to discrimination, as well as a lack of representation and education. But...

Bye-bye ISR, hello Catalyst 8000 for Cisco SD-WAN

The new Catalyst 8300 Series of routers replace ISRs that customers said were ill-equipped to run the Cisco SD-WAN. Cisco also ...

Juniper's 128 acquisition needed to improve SD-WAN

Juniper Networks plans to 'enhance' its Contrail SD-WAN through the acquisition of 128 Technology. 128 has a more advanced SD-WAN...

SearchCIO

An introduction to intelligent document processing for CIOs

With IDP, enterprises can bring documents into automation workflows, which can help reduce document processing time and save on ...

Why CIOs need to establish an automation CoE

With organizations continuing to automate business processes across several departments at a rapid pace, it's time they consider ...

Is your company's IT governance strategy cloud ready?

As companies prepare to migrate to the cloud, they need to review their IT governance strategy before making any decisions to ...

SearchEnterpriseDesktop

A complete guide to troubleshooting Windows Hello

Windows Hello has several common issues that administrators may need to troubleshoot. Find out what those issues are here and ...

Comparing Jamf vs. Fleetsmith for macOS management

Like any decision around purchasing a business technology, the Jamf vs. Fleetsmith debate for Apple device management comes down ...

Mac users key in defending against Apple T2 chip flaw

IT pros should lean on Mac users to protect corporate networks against exploiters of the Apple T2 chip vulnerability. Hard drive ...

SearchCloudComputing

Microsoft's SpaceX partnership sends Azure to the final frontier

Microsoft has partnered with SpaceX to tie Azure to low-orbiting satellites. The company also introduced a modular data center to...

How to design and implement a cloud governance framework

An organization that wants to control its cloud environment should look closely at how well it adheres to these four key pillars ...

AWS Outposts: What you need to know to get started

AWS Outposts is a managed device that brings Amazon cloud services into your data center. Review its requirements, use cases and ...

ComputerWeekly.com

Digital public services fail UK citizens on multiple fronts

Commission for Smart Government publishes paper on obstacles facing the UK’s digital government, setting out principles for ...

Tech Talent Charter launches Doing It Anyway role model campaign

Industry collaborative launches campaign to make female role models more visible and encourage others into tech

Deutsche Bank in talks over sale of IT unit to TCS

German bank is said to be in negotiations to sell its retail banking IT operation to Indian IT giant

Join the conversation

2 comments

Send me notifications when other members comment.

Oldest

[-]

Margaret Rouse - 8 Sep 2014 8:42 AM

What policies do you think are important for employee use of third-party apps?

carol482 - 20 Feb 2015 10:05 AM

Instituting policies that ensure any third-party apps used within the social network infrastructure include checking on what privacy rights are waived with the third-party app that the social network has no control over. Also important for us having a policy that restricts use of games and other apps that gather user information and ad based behavioral habits. A policy of "no click" on advertisement is an important policy for third-party app use with our company.