DocsBrokenWindow: Audience-focused use cases

source/about/mission-ready-mobile.rst

@@ -1,14 +1,93 @@
 Mission-Ready Mobile
 ====================
 
+**When frontline teams lose access to primary systems, coordination breaks down—along with the mission. Mattermost keeps teams connected through secure, self-hosted mobile collaboration—built to operate in disconnected, degraded, or high-security environments.**
+
+Field operations across defense, public safety, disaster response, and critical infrastructure routinely push beyond the limits of cloud-first tools. Mobile coordination becomes essential, but most platforms require constant connectivity and third-party infrastructure—introducing unacceptable risk.
+
+Mattermost eliminates these dependencies. With an offline-capable, policy-controlled mobile experience, Mattermost enables resilient collaboration in the field while giving organizations full control over infrastructure, access, and data.
+
+.. image:: /images/mission-ready-mobile.png
+   :alt: An infographic illustrating "Security-Optimized Mobility" with two devices side-by-side: A Mattermost server (on the left) and a mobile device (on the right). The Mattermost server displays a list of security features, including "Zero Trust Security (Channel ABAC, Files ABAC)," "Secure File Viewer," "TLS Data in Transit (Post Quantum)," "Authentication and Access Control (MFA, SSO)," "Data Spillage Handling," and more, with asterisks (*) indicating functionality scheduled for release later in 2025. On the right, the mobile device mirrors corresponding security features, such as "Secure File Viewer," "TLS," "Burn on Read," "End-to-End Encryption," "Biometric Authentication," and others, with blue arrows connecting the related features on the server and the mobile device, signifying seamless integration and support for advanced security across these endpoints.
+
+Mattermost supports mission-ready mobile workflows across:
+
+DDIL Defense Teams
+-------------------
+
+Military units and defense organizations operating in denied, degraded, intermittent, or limited (DDIL) environments depend on uninterrupted coordination during mission-critical operations—even when operating at the tactical edge without consistent infrastructure.
+
+**Benefits**
+
+- **Maintain operational tempo** with :ref:`mobile message drafts <collaborate/send-messages:draft messages>` that are retained locally and synced across clients, ensuring no data loss when connectivity returns.
+
+- **Ensure trusted access across distributed units** using :doc:`certificate-based authentication </onboard/certificate-based-authentication>`, :doc:`OpenID </onboard/sso-openidconnect>` or :doc:`SAML SSO </onboard/sso-saml>`, and :ref:`biometric unlocking <deploy/mobile/mobile-security-features:biometric authentication>`.
+
+- **Comply with mobility security standards** using :ref:`jailbreak and root detection <deploy/mobile/mobile-security-features:jailbreak and root detection>`, :ref:`server-enforced PIN lock <deploy/mobile/mobile-security-features:biometric authentication>`, and :ref:`session expiration <about/security:session management>` to prevent device compromise.
+
+- **Control infrastructure exposure** with fully :doc:`self-hosted </deploy/server/server-deployment-planning>` or :doc:`air-gapped </deploy/server/air-gapped-deployment>` deployments that keep data within sovereign networks.
+
+
+
+Emergency response and disaster recovery teams
+
+First responders and disaster operations centers must coordinate quickly and securely—even when traditional communication infrastructure is disrupted or unavailable.
+
+Benefits
+
+    Enable incident coordination when networks are degraded using mobile apps with offline operation and background sync.
+
+    Enforce mobile device compliance through AppConfig and MDM integration, ensuring all responders use pre-approved secure configurations.
+
+    Protect data from lost or compromised devices with remote wipe capabilities, mobile session control, and mobile PIN enforcement.
+
+    Share updates, files, and situation reports across agencies or jurisdictions from mobile devices under policy-based controls.
+
+Features that power these outcomes: Offline-capable mobile clients, AppConfig support, MDM integration, remote wipe, session expiration, mobile file sharing, and cross-agency channel collaboration.
+Industrial operators and infrastructure field teams
+
+Teams supporting energy, utilities, and manufacturing operations often work in remote or rugged environments with unreliable connectivity and limited access to central systems.
+
+Benefits
+
+    Enable remote field coordination through a lightweight mobile interface optimized for low-bandwidth environments.
+
+    Support field readiness with preconfigured app settings and certificates delivered via AppConfig and MDM tooling.
+
+    Maintain critical workflows with offline drafting, structured playbook execution, and seamless resync on reconnect.
+
+    Prevent access from untrusted devices with mobile posture checks and admin-enforced security controls.
+
+Features that power these outcomes: Low-bandwidth mobile UX, AppConfig provisioning, certificate auth, offline messaging, and secure mobile access policies.
+Security and IT administrators managing mobile access across sensitive environments
+
+IT and security teams need visibility and control over how mobile devices are used to access operational data—especially in sovereign, disconnected, or high-risk environments.
+
+Benefits
+
+    Enforce strong mobile access policies using MDM integration, server-enforced session rules, and jailbroken device detection.
+
+    Support secure identity workflows using SSO, MFA, and client certificate-based login.
+
+    Enable centralized mobile governance with remote wipe, session revocation, and device-level restrictions.
+
+    Align with zero trust and compliance standards using TLS 1.2+ encryption and self-hosted data flow.
+
+Features that power these outcomes: AppConfig and MDM support, SAML/OpenID/cert auth, jailbreak/root detection, session expiration, audit logging, and full data sovereignty.
+
+
+
+
+
+
+
 Mission environments demand secure, reliable mobile collaboration, from intelligence briefings and operational coordination to incident response in disconnected regions. Traditional mobile communication tools fail to meet the demands of field-forward operations, exposing sensitive data to third-party systems, and increasing the risk of data leakage, non-compliance, and operational compromise.
 
 Mattermost provides a secure, mission-ready mobile platform built for defense, law enforcement, and public sector operations. Optimized for low-bandwidth and disconnected conditions, Mattermost ensures secure communication on government-issued devices while enabling compliant collaboration on personal phones—without reliance on consumer apps or invasive controls.
 
 With protections including ID-only push notifications, biometric authentication, jailbreak detection, and full MDM/EMM support, Mattermost delivers control, compliance, and usability across a range of challenging field conditions.
 
-.. image:: /images/mission-ready-mobile.png
-   :alt: An infographic illustrating "Security-Optimized Mobility" with two devices side-by-side: A Mattermost server (on the left) and a mobile device (on the right). The Mattermost server displays a list of security features, including "Zero Trust Security (Channel ABAC, Files ABAC)," "Secure File Viewer," "TLS Data in Transit (Post Quantum)," "Authentication and Access Control (MFA, SSO)," "Data Spillage Handling," and more, with asterisks (*) indicating functionality scheduled for release later in 2025. On the right, the mobile device mirrors corresponding security features, such as "Secure File Viewer," "TLS," "Burn on Read," "End-to-End Encryption," "Biometric Authentication," and others, with blue arrows connecting the related features on the server and the mobile device, signifying seamless integration and support for advanced security across these endpoints.
+
 
 The following mobile-first operational capabilities are available.