Samsung Knox

Its primary purpose is to provide organizations with a toolset for managing work devices, such as employee mobile phones or interactive kiosks.

[6] Knox provides more granular control over the standard work profile to manage capabilities found only on Samsung devices.

[7] As of December 2020, organizations can use specific Samsung mobile device cameras as barcode scanners, using Knox services to capture and analyze the data.

[18] When Samsung Knox debuted with the Galaxy Note 3 in 2013, it included a proprietary container feature that stored security-sensitive applications and data inside a protected execution environment.

[22] In 2018, Samsung partnered with Google to use its Android work profile to secure applications and data, and in 2019 deprecated the Knox Workspace container.

[34] Knox includes built-in hardware security features ARM TrustZone (a technology similar to TPM) and a bootloader ROM.

[41] Knox's TrustZone-based Integrity Measurement Architecture (TIMA) allows storage of keys in the container for certificate signing using the TrustZone hardware platform.

[42] In June 2014, the Defense Information Systems Agency's (DISA) list of approved products for sensitive but unclassified use included five Samsung devices.

[44] In October 2014, the National Security Agency (NSA) approved Samsung Galaxy devices for use in a program for quickly deploying commercially available technologies.

[45] In December 2017, Knox received "strong" ratings in 25 of 28 categories in a Gartner publication comparing device security strength of various platforms.

Rooted Samsung Galaxy S10e with tripped e-fuse