What is SASE?
Secure Access Service Edge (SASE) is a security framework that converges software-defined wide area networking (SD-WAN) and Zero Trust security solutions into a converged cloud-delivered platform that securely connects users, systems, mobile, endpoints, and remote networks to apps and resources 1. It is a cloud architecture model that combines network and security-as-a-service functions and delivers them as a single cloud service 2. SASE extends networking and security capabilities beyond where they’re typically available.
SASE and Gartner
SASE can be used to provide secure remote access to corporate VPN resources, including applications and data while ensuring that the user’s device is secure and compliant with corporate policies. Gartner defines SASE as a cloud-based service that combines network security functions with WAN capabilities to support the dynamic secure access needs of digital enterprises. According to Gartner, SASE is the future of network security, as it provides a comprehensive solution for securing the modern enterprise network 4.
Secure Access Service Edge (SASE) is a term coined by Gartner in a 2019 report titled “The Future of Network Security is in the Cloud.” In the paper, Gartner defines SASE as a framework that delivers “comprehensive WAN capabilities with comprehensive network security functions (such as SWG, CASB, FWaaS, and ZTNA) to support the dynamic secure access needs of digital enterprises.”
What is SASE Network?
A SASE network (Secure Access Service Edge) is a cloud-based architecture that combines networking and security functions into a single, unified service and is designed to provide secure and optimized access to applications and data for users regardless of their location or device.
What is SASE Architecture?
SASE Architecture is the framework that defines how networking and security functions are combined and delivered in a SASE network. It emphasizes four key characteristics:
1. Cloud-native: All components of the architecture are delivered as a service from the cloud and are managed and updated by the provider. This eliminates the need for on-premises hardware and software, simplifies deployment and management, and ensures access to the latest security features.
2. Global architecture: SASE services have distributed points of presence (PoPs) around the world, which optimizes routing for users and applications regardless of their location. This minimizes latency and ensures secure access to resources globally.
3. Identity-centric security: SASE focuses on securing access based on user identity and device trust, regardless of location or network. This approach, also known as Zero Trust Network Access (ZTNA), helps prevent unauthorized access and data breaches.
4. Integrated security services: SASE combines various security functions like SWG, CASB, FWaaS, and others into a single, unified platform that provides comprehensive security controls, simplifies policy management, and offers real-time threat detection and prevention.