Knox for Mobile Threat Defense

Remediate threats using our powerful Knox SDK to deliver the next generation of AI-powered security. Mobile Threat Defense (MTD) solutions can use machine learning to continually analyze mobile forensics and understand patterns of bad behavior.

Once you detect these threats, Samsung Knox empowers you to remediate through access to comprehensive management and security features.

Detect threats with Knox

Gain exclusive, secure, and privacy-compliant access to hundreds of data points with the Samsung Knox SDK.

App & process data

Details about which apps are running, their current state, how long they’ve been running, and what device resources they’re using.

Network data

Information about the data being sent from the device, the network conditions, connection quality, and routing tables.

Kernel data

How the device kernel and memory are being used: apps running in privileged mode, whether memory is being used normally.

File system data

The mounted file systems, usage type, and read/write permissions granted.

Remediate with Knox

Samsung Knox Platform for Enterprise provides comprehensive management and security of Samsung devices, extending the core capabilities of Android Enterprise.

Through the Knox SDK, you have hundreds of APIs you can call once you detect a threat.

Use cases

Threat Scenario Android Enterprise* Knox Differentiation
Data leakage Employee uses an unauthorized device app to store confidential files in the cloud, or a personal email app to send files, or device clipboard to copy private data to another app.
  • Prevent users from installing certain apps or using app stores to download personal apps
  • Uninstall, update, disable, or blacklist apps
  • Wipe app data
  • Encrypt data while it is at rest on the device
  • Encrypt data while it is in transit, using VPN
Social engineering Email or text asks user to click a link, which goes to fake banking website that gets user’s banking credentials.
  • Hardware-based authentication used as a physical security key for two-factor authentication
  • Restrict network domains that can be accessed
Physical device breach + poor password management Employee loses mobile device, which contains private customer data.
  • Enforce authentication
  • Lock a device, block access to sensitive data, wipe all device data
  • Force two-factor authentication or enterprise AD credentials
  • Integrate Samsung Pass or FIDO biometric authentication
  • Secure the certificates used to authenticate users
  • Keep a device locked even after a user authenticates successfully.
  • Remotely capture device screen activity, control device actions

*Android Open Source Project (AOSP) without Knox Platform for Enterprise

Find new business by integrating Knox features

Join the Knox Partner Program to enter our markets, meet systems integrators in our program, and identify potential customers.

Get started

To add Knox features to your MTD solution, contact us to connect with your mobility experts.

Contact us