Apple adds enterprise features to the iPhone, including 802.1X, and opens it to developers: Today's announcement from Steve Jobs was full of surprises, including the fact that Apple licensed Microsoft's ActiveSync for full Exchange support, and the level at which developers will have access to iPhone hardware and information.
The 2.0 software, free to all current owners of iPhone, will be available in June, which kind of tips the hand as to when we'll see a 3G iPhone, too, I imagine. iPod touch owners will pay a "nominal" upgrade fee, as Apple books iPhone revenue over 24 months and iPod revenue as units are sold.
Apple will pile in all the stuff that enterprises demanded from Research in Motion in the Blackberry platform--and that RIM built in--including support for 802.1X (including WPA2 Enterprise) for authenticated Wi-Fi login, two-factor authentication, certificates, and additional VPN types. They're also adding "remote bricking," a critical feature that allows a stolen or misused phone to be remotely and securely wiped.
On the developer side, Apple is opening up the whole puppy in a way that I didn't expect. I assumed the firm would put limits on whether the cell data connection could be used by apps, but not restrict the Wi-Fi side. The announcement puts nothing off limits except VoIP over cell data, although there's a list of characteristics that software can't contain, such as being malicious or a bandwidth hog. All software is distributed and installed via App Store, available on an iPhone or in iTunes for synchronization. This includes free software. Apple will therefore vet, and ostensibly be able to halt use of programs that exhibit behavior they deem bad. Jobs said, "We can turn off the spigot if we need to." Every app will be signed by a developer certificate.
Developers can have access to location information provided by Google (cell towers) and Skyhook (Wi-Fi) for use in their programs. No mention was made of privacy settings for such. Skyhook's Loki toolbar requires that you grant permission to Web sites that want to obtain your location details; I expect a system-wide approach to that, too.
No mention was made today of a few particular problems with iPhone security, such as the ability to tunnel and traverse a VPN across multiple network media, such as using an iPhone for a secure connection while you travel from work, across the EDGE network, and to hotspots. This likely could be built on top of the enterprise features. You'd also need policy management, such as disallowing certain kinds of connections without a VPN being active or over non-trusted Wi-Fi networks.
Certainly, this is a big step forward for corporate users, mobile applications, and consumer ease on the iPhone platform. The beta is available today to developers; you can become a developer for $99. Amazingly, Apple's developer site crashed and is still unavailable two hours after the press conference ended.