How do you harden a network that you can’t completely control? This is one of the questions that enterprise IT and security teams must answer as the workforce becomes more distributed and apps move to the cloud. Traditional enterprise security models that depend on sending traffic through a data center are slow and outmoded. Cloud-based security can be a great answer, but this approach also has gaps.
Enterprises are increasingly turning to the zero-trust security model. As we discussed in a previous blog post, zero trust is based on the idea that no device, person, network, or packet can be trusted. Instead, users are granted conditional, intelligent access. The logic here is very similar to the process a reporter follows when writing a news article: The network needs to know who, what, when, where, and how. Who are you? What are you trying to access? When is this access happening – is it the right time of day for this device to be accessing this resource? Where are you in the world? How is this access happening?
Using these common-sense metrics in a cloud environment creates very powerful security controls. In a cloud world where data (and unauthorized access to that data) can be anywhere, security must be everywhere. Pervasive security requires new ways of thinking about how to secure companies’ most vital information.
SASE and SD-WAN security
The zero trust approach is just one of the many security tools you’ll find in the VMware SASE Platform™. This secure access service edge (SASE) platform converges cloud networking and cloud security service to deliver simplicity, scalability, flexibility, low latency, and pervasive security. It’s a global, cloud-based approach that optimizes applications through a network of global VMware SD-WAN™ Gateways, providing direct, fast, and secure on-ramps to SaaS and IaaS services.
VMware Secure Access™ is a key component of the VMware SASE Platform. It combines the consistent, secure cloud application access functions of VMware SD-WAN™ with VMware Workspace ONE, an intelligence-driven digital workspace platform. Workspace ONE integrates access control, application management and multi-platform endpoint management into a single platform.
Workspace ONE allows enterprises to implement zero trust security models allowing only trusted devices and users to access applications hosted anywhere, on-premises or in the cloud, regardless of location. VMware SD-WAN provides users with consistent, secure cloud application access across the Internet by optimizing applications through a network of VMware SD-WAN Gateways, regardless of where the enterprise applications are hosted.
VMware Secure Access combines these solutions, bringing remote and mobile users into the enterprise VMware SD-WAN fabric. This enables all users to access cloud and data center hosted applications through a network of worldwide service nodes. Users can access cloud resources without added latency and hairpinning. Employees gain the security and benefits of a cloud-hosted solution, while IT gets simpler deployment and maintenance of costly remote access services.
Join our webinar
Join VMware experts and customers on November 5 for our webinar, Deliver Better Remote Access with VMware SASE Platform. You’ll learn how to optimize your infrastructure for the new world of remote access, where employees work from home—or any location—and need fast, secure access to company apps and data.
Register for our live online event, Thursday, November 5 at 1:00 pm Pacific time, or view it on demand.
- Read our solution overview, VMware Secure Access
- Download our new SASE & ZTNA for Dummies iPaper
Follow @VeloCloud on: