SASE is a network architecture that combines connectivity, networking and security functions in a single integrated system, which are delivered from the Cloud and provided as a service by the SASE provider. The SASE approach represents the logical evolution of security needs and technological trends and addresses to these needs, by providing network and connectivity security controls at the edge, i.e., as close as possible to the users.
of enterprises will develop
strategies to adopt SASE
of enterprises will adopt
SWG, CASB, ZTNA and branch FWaaS
Fonte: Gartner Report “The future of network security is in the cloud”
The increasing deoloyment of Cloud and Saas (Software-as-a-Service), Iaas (Infrastructure-as-a-Service) and Paas (Platform-as-a-Service) have inverted access requirements, with more users, devices, applications, services and data located outside an enterprise than inside. This makes the WAN network inadequate, expensive and unable to guarantee the levels of dynamism, speed, performance, security and access control required by modern applications.
The SASE model is based on access security, transforming the network model from hub and spoke, where access to Internet applications and resources is Data Center-Centric, to user centric, where access decisions are Identity-centric and applied to the endpoint.
a technological approach that decouples network hardware from its control mechanism. It implies the possibility of creating hybrid networks (on intelligent and dynamic platforms) that allow multiple access technologies, bandwith on demand, dynamic routing and security services, integrated with each other.
a network security model that verifies users' identities and establishes device trust before granting them access to authorised applications. It helps organisations prevent unauthorised access, contain breaches, and limit an attacker's lateral movement on your network.
a Cloud platform that makes firewall service and security services available everywhere.
web access gateway which integrates advanced security features to protect your users/workstations using Internet resources. Organizations can secure and enable corporate resources while securing and delivering their sites, applications, and APIs.
application for the use of Saas applications. In-line implementation for real-time control of Saas User-Application interaction, or off-line implementation based on "API telemetry" available with Saas Providers.
grazie all’architettura SASE, la DLP diventa una soluzione distribuita (incentrata sui dati stessi) e integrata nel cloud , eliminando la necessità di distribuire e mantenere più strumenti.