What is SASE?

Video Statistics and Information

Video

Captions Word Cloud

Reddit Comments

Captions

in 2019 got the coin the term secure access service edge or simply sassy and spoke about it is the new frontier in cybersecurity since then everyone's been working to understand what is meant by Searcy and what benefits it should be providing to our businesses in order to do that we need to help explain what changes have taken place in the way that businesses operate today and then from there we can understand what problem set a secure access service edge should try to solve now we know that year-on-year the number of users who decide to work from outside of the office grows whether it's at home on the bus or the pub and on an increasingly diverse array of Technology types macbook surface Pro's Chromebooks iPhones Android smartphones it's become almost impossible to expect to traditional next-gen firewall or proxy to even see the traffic let alone understand all of these new types of traffic that would then pass through to these cloud applications then there are our business services applications and data these are no longer found in a centralized location either inside our networks instead our networks have evolved into a segmented network of private and custom applications SAS pass and ayahs and there are literally tens to hundreds of thousands of apps to choose from which just makes that complexity seem bottomless and the reliance on the public internet and unreliable and unsecure method of service delivery in short our users are highly distributed and our network of services is also highly distributed both across multiple geographical areas and yet it's still our role in IT to maintain high availability confidentiality and integrity of a data and business services so how does Sasi deliver on these requirements well Sarcee at its core is simply a mechanism or direction for delivering your entire network and security stack from a single entity outside of the traditional Primula so firstly the Sassi security cloud has to sit between these distributed users and distributed cloud services and provide all of the network controls and capabilities that your traditional Network should that means latency optimization path selection quality of service caching routing traffic shaping etc this ensures that your users can connect to your services wherever they are in the world faster and more reliably without having to bounce back through the legacy corporate network of a VPN all over the public Internet deployment of this can be delivered in a variety of different mechanisms whether it's just using things like IPSec or GRE tunnels reverse proxies or forward proxy clients all just need to point your existing users devices networks to each sassy entity efficiently so that the Sassi can then route your traffic to its intended destination and then hand it over directly by appearing relationships to those msps that's your new network or network as a service that's what it's called now that we have some performance budget from our network as a service we need to protect your assets data and users so the sassy needs to deliver the entire security stack inside the cloud entity every security control administrative or technical that you had on-premise now needs to be delivered outside the perimeter that means things like access control group policies compliance checks backup assurance VPNs demo people malware detection user behavior analytics you name it it now needs to be delivered by the SAS so far we found a few different technology pillars that should be included in today's you know sassy to effectively protect your users data and business of those key security technology colors of this sassy our next-gen web proxy cloud access security broker has been o the zero trust VPN now this will of course yes continue to evolve with our needs as other technology pillar start to mature things like card firewalls or remote browser isolation etc but these tools inside of the sassy and what God was calling network security as a service so we have network as a service and have network security as a service and it's these two entities working together that makes the secure access service agile assassin platform and that should be delivering the following outcomes to any business that has or is moving towards a cloud-based utopia so one a production and in complexity and costs because obviously it can prevent users from paying for multiple different apps to do the same thing enable new business digital business scenarios by ensuring that the business can use the newest and best application secure improvement in performance and latency while obviously far the network as a service we need to have ease-of-use and transparency for users improved security by leveraging the next-gen secure web gateways ability to understand api's and JSON to control instances and activity for current applications though operational overhead well by having a single entity with a single management console of course it makes it easier an able zero trust network access so only those like users can have access to the right private applications at any one time then increased effectiveness of the network and network security staff by strong but they don't have to learn multiple different products and get them all integrated and working together it's all just centralized and nice and easy and with that centralized policy with local enforcement is of course going to ensure a single place for all your network and security controls so hope that explains what a SAS is well it's meant to be delivering why we've got it and you know hopefully we see that it's here to stay thank you

Info

Channel: Michael Ferguson

Views: 8,564

Rating: 4.9032259 out of 5

Keywords: Work, Netskope, SASE, secure access service edge, security, CASB, cloud applications, cloudapp

Id: p_FGr1AJjVo

Channel Id: undefined

Length: 6min 8sec (368 seconds)

Published: Tue Feb 18 2020