What is SASE? As we are increasingly ‘connected’ and decentralized due to cloud computing and remote access technologies, it is becoming harder and harder to validate access controls and identity management into all our services, becoming the top attack vector in today’s world. We have all these different identity and access systems, spread across many locations which include business locations, to homes and coffee shops. It’s a nightmare to consistently provide secure access to sensitive data and systems. SASE is meant to address this challenge.
Gartner describes SASE this way, “The Secure Access Service Edge is an emerging offering combining comprehensive WAN capabilities with comprehensive network security functions to support the dynamic, secure access needs of digital enterprises”.
SASE capabilities are delivered as a service, based upon the identity of the entity, real-time context, enterprise security/compliance policies, and continuous assessment of risk/trust throughout the sessions. Identities of entities can be associated with people, groups of people (branch offices), devices, applications, services, IoT systems, or edge computing locations. The goal of SASE is to take our cloud-based firewalls (FWaaS), software defined networks (SD-WAN), cloud access service brokers (CASB) and incorporate them all into one zero-trust model.
It can be likened to when we had a firewall, IDS/IPS, proxies and gateway antivirus and someone decided it’d be best to simplify into one appliance and the layer seven firewall was born (now referred to as the ‘next -gen firewall). By taking all these operations and merging them we can simplify and see more clearly our environment to control it.
The following vendors are expected to play a major role in defining this technology and market: Akamai, Cato Networks, Cisco, Cloudflare, Forcepoit, Fortinet, McAfee, Netskope, Palo Alto Networks, Proofpoint, Symantec, Versa, VMware, and Zscaler.
So are you SASE? If you aren’t now, you may required to be in the future.