-
Tags
-
Author
-
Evelina Sinkevičiūtė
-
March 18, 2020
The traditional network and network security architectures are unable to effectively support the dynamic secure access requirements of digital businesses. Digital transformation, the distributed mobile workforce, the adoption of cloud services and emerging edge computing platforms have changed how enterprises operate in the modern age. The current state of enterprise computing is:
-
More work happens outside of the enterprise network;
-
More workloads run in IaaS;
-
More apps are consumed via SaaS;
-
More sensitive data is located in the cloud rather than enterprise data center;
-
More user traffic runs through public cloud services than data centers.
To operate efficiently and enhance rather than inhibit the needs of digital businesses, there is a need for unconstrained (anytime/anywhere) access to apps and services. What digital enterprises need is a worldwide mesh of network and network security capabilities that can be applied whenever needed to provide entities with access to the networked capabilities they need. And your enterprise can SASE your way there.
What is SASE?
Secure Access Service Edge (SASE) converges network (SD-WAN) and network security services (such as SWG, CASB, FWaaS, and ZTNA) into a unified, global cloud-native seamless service to support the dynamic secure access needs of digital enterprises.
As a cloud platform, it connects and secures any type of edge device (such as a branch office, mobile device, IoT system, edge computing location) based on user identity and its real-time characteristics (device and location). SASE products are designed to deliver seamless, consistent and secure network access for any user at any time and location.
Can it be a collection of WAN and security point solutions coupled together? No, not really. SASE is all about a single integrated service that inspects all traffic and saves time for IT by removing the need to deploy and manage multiple security solutions.
The benefits of SASE
-
Reduce complexity and costs due to the consolidation of technology stacks.
-
Build new products and enable secure access for partners and contractors while removing risks caused by legacy VPNs.
-
Improve performance for latency-sensitive apps.
-
Simplify access experience for users to remove operational friction.
-
Improve security due to consistently inspected access sessions and access policies.
-
Lower operational overhead and speed up adoption with less dependency on additional controls.
-
Enable zero trust network access to an enterprise network with seamless and consistent session protection.
-
Improve network and network security employee effectiveness with removed mundane tasks and focus on understanding business, regulatory, and application access requirements.
How Fyde delivers SASE
Secure access to SaaS apps
Fyde was designed as a cloud-native solution to enable secure and simple access to enterprise resources such as SaaS apps (e.g. Salesforce, G Suite, Gmail, Office 365) using a device. Fyde also prevents phishing and other malware domains as its secure web gateway “sits” on the device and instead of sending all the internet-bound traffic to infrastructure adding latency, Fyde secures access for internet resources directly on the device, improving performance and removing latency.
Secure access to internal apps
Fyde secures access to internal applications through identity-integrated access proxies powered by the Zero Trust policies that we enforce, e.g. continuous verification of user identity and the device as well as the continuous verification of the application.
On-device security
“Internet-facing SaaS applications and other websites should be protected directly on the end device, or the real edge because there's no need to add additional latency,” says Sinan Eren, co-founder, and CEO at Fyde.
Fyde is agnostic to infrastructure. To access internal or SaaS apps install the Fyde proxy on your infrastructure for direct, fast and secure access instead of going through our infrastructure. Fyde pushes a lot of the computation, logic, and protection to the device. Whether it’s a data center or an on-prem network, Fyde is architected in a way that you can add proxies to compute nodes anywhere that the organization needs. The cloud-native Fyde Enterprise console “sits” on AWS and controls all the microservices that can be put anywhere.
The future is SASE
SASE as a new model for network security is paving the way organizations will secure their networks and data in the future. By 2024, at least 40% of enterprises will have explicit strategies to adopt SASE, up from less than 1% at year-end 2018. Cloud-native SASE enables a lean, agile infrastructure that will lead your company into the digital era.