In order to maximize return on investment for wireless initiatives, corporates should consider the following critical factors while deciding on a mobile enterprise strategy:

n Readiness of the Backend System: Wireless applications are primarily meant for providing timely information that’s accurate and up to date. An enterprise must evaluate how ready it’s to ensure that. It should have a proper system in place for receiving information from different locations and departments and have a backend that’s really current. Enterprises that have gone wireless, have back-ends that are updated online or at least on an end-of-the-day basis.

As a first stage, before going wireless, the enterprise should be in a position to offer similar services on the Internet, through an effective website. That’s a good index of the state of readiness to go wireless.

n Evaluation of Devices and Applications for Those Devices: The issue of standardization on specific wireless devices often arises as companies embrace wireless technology. However, a solution that only accesses a small number of devices limits its overall value to businesses.

n Employee-purchased Devices: Many businesses allow employees to purchase wireless devices and reimburse them for the device itself and/or for business-related airtime. Device choice, even in work environments, will continue to be highly personal.

n Needs-driven Device Selection: Mobile users have many different requirements and personal preferences. Some spend hours in a car where a voice-based device and voice access to corporate data is ideal. Others work in an environment where a keyboard-based device and advanced graphics capability is most desirable. There are currently over 1,000 models of mobile devices in the market.

n Device Diversity: Wireless devices, driven by low-cost technology, are proliferating. Suppliers pay little attention to product upgrades and backward compatibility. Time to market is paramount. Although mobile devices are expected to converge to a set of features and performance standards, convergence to a single form factor is highly unlikely.

Due to rapid device evolution, enterprises that commit to a mobile solution that only support a handful of devices may find it to be inadequate in less than a year. Trying to take advantage of new devices as they come in the market is more expensive than choosing a mobile platform that already supports an array of device types.

n Security Issues: Wireless security is inherently different from LAN-based security. Enterprises must be aware of how traditional security challenges change in relevance in a wireless world. Key considerations include:

n Privacy: This is the most important component of secure transactions and is required when transmitting sensitive information (such as credit card numbers, financial details or patient records) so the information cannot be seen or used by other parties. Established privacy protocols and procedures are critical for wireless applications as wireless transmissions are ground zero for hackers.

n Authentication: Electronic authentication typically involves using a token or certificate that can be verified by a recognized Certification Authority (CA). Digital signature technology (popularized by VeriSign) is one way of authenticating users. Gartner Group adds, "With 98 percent of recently surveyed companies reporting mobile device theft, simply authenticating the device is insufficient."

n Two-factor Authentication: This process is used to verify both the device and the identity of the end-user during a secure transaction (two-factor authentication confirms that both the device and the user are authorized agents). Two-factor authentication is critical in protecting network integrity from the inevitability of stolen or lost devices.

n Data Integrity: This concept involves the detection of any change caused to the content of a message. For example, when an end-user instructs a bank to transfer Rs 1,000 from one account to another, integrity guarantees that transaction specifics in the user’s message cannot be altered without alerting the bank or the user. If the message is altered in any way during transmission, an integrity-driven security system detects this alteration.

n Non-repudiation: This process establishes a system such that users cannot deny they took part in a transaction. Non-repudiation is similar to authorization, in that it requires successful authentication of the user, but it also establishes a credible and legally enforceable record of all transactions.

n Encryption: Encryption involves scrambling data bits using mathematical algorithms to protect data.

Additionally, the selection of a suitable mobile operator is a must and that is discussed in detail separately.