network_stuff:sase
This is an old revision of the document!
SASE (Secure Access Service Edge) is a cloud-based model combining network security functions with WAN capabilities (like SD-WAN) to support dynamic secure access to organizational resources. It is ideal for businesses with dispersed workforces needing secure and efficient connections to applications, irrespective of user or resource location.
Key Aspects:
- Identity-driven: Policies based on user identity, dynamically adjusting access and security policies based on user, location, device health, and compliance.
- Cloud-native architecture: Integrates various security and network functions in a unified, cloud-delivered service model.
- Support for remote workers: Provides secure, fast access to cloud-based applications and services to users everywhere.
Examples of SASE Components:
- SD-WAN: Optimizes network traffic routing.
- Firewall as a Service (FWaaS): Cloud-delivered firewall capabilities.
- Zero Trust Network Access (ZTNA): Implements least-privileged access controls.
- Secure Web Gateways (SWG): Filters unwanted software/malware from user-initiated web traffic.
- Cloud Access Security Broker (CASB): Extends security policies to cloud applications.
Vendors Offering SASE Solutions:
- Palo Alto Networks: Comprehensive SASE solution integrating SD-WAN, SWG, CASB, FWaaS, and ZTNA.
network_stuff/sase.1715097736.txt.gz · Last modified: by jotasandoku
Except where otherwise noted, content on this wiki is licensed under the following license: CC Attribution-Share Alike 4.0 International
