SASE: Questions and Answers with Amit Bareket

Perimeter 81 Co-founder and CEO, Amit Bareket, discusses SASE. Learn how we are achieving total SASE security and to hear more about the future of networking.

Play Video

What Does SASE Do?

The cybersecurity and network security solution space is highly segmented, with endless options and solutions offered by security vendors. Instead of simplifying the consumption of cybersecurity, this variety of services complicates the orchestration of vital tools inside the organization’s network. SASE frameworks will empower IT with a more holistic cybersecurity approach that includes custom access policy management, enforcement of security utilities, and monitoring from one admin panel.

Most relevant for modern businesses, Secure Access Service Edge (SASE) is a cloud-native architecture model that combines these different network and security functions into a unified platform that’s delivered as a service, and without any or minimal hardware and appliances. SASE networks allow IT teams to easily connect and secure all of their organization’s resources and users in an agile, cost-effective and scalable way.

What Does SASE Mean for Businesses?

A SASE software solution provides organizations the opportunity to connect to a single secure network where they can gain access to physical and cloud resources – no matter their location. In the hands of IT, SASE security enables a more holistic and agile service for business networking and multilayered defense for customers. What makes SASE innovative and disruptive is the idea that consumption of many vital tools becomes a singular idea, and this alone impacts the productivity, security, and bottom line of any organization.

SASE Use Cases

Perimeter 81's SASE platform combines network and security functionalities into one unified network security service solution

Unified Cloud Management

Our SASE platform unifies a range of network and endpoint security solutions managed & delivered through the cloud. This single cloud management platform provides consolidated, user centric networks & granular policy management for organizations of all sizes.

Zero Trust NaaS

Perimeter 81’s multi-regional SASE network provides a comprehensive set of converged secure network capabilities, delivered and managed over our multi-tenant cloud, providing a secure and highly-scalable network for organizations everywhere.

Firewall as a Service

Our SASE platform offers a Firewall as a Service which protects organization's site-centric networks from potential threats, while implementing modern security features for next-gen firewall.

Cloud Sandboxing

Our SASE platform includes Cloud Sandboxing where we analyze unknown files for zero-days and advanced threats. Our platform delivers full sandbox protection on and off your network.

DNS Security

A crucial part of any SASE platform, DNS Security automatically prevents millions of malicious domains which are identified with real-time analysis with global threat intelligence. It predicts and stops malicious domains with algorithm-based malware with instant enforcement.

SaaS Security

Our SASE security platform ensures that your organization has SaaS security including Office 365, Google Drive, Dropbox and others.

Endpoint Security

We offer complete endpoint security for your organization. With SASE we can deliver multiple endpoint protection capabilities, including next-generation malware protection and support for visibility into encrypted traffic.

Endpoint Compliance

Endpoint Compliance is simple as our client scans for security features like Firewall, Anti-Virus, Windows patches, processes and more. This results in a more secure network and eliminates security threats in one’s network.

The Four Main Characteristics of the SASE Security Model

According to Gartner SASE is a service consisting of four main characteristics.

Identity-driven

With a least-privileged strategy and strictly enforced access control, organizations will be able to control interactions with resources based on relevant attributes, including application access, user and group identity and the sensitivity of the data being accessed.

Cloud-based architecture

The SASE model architecture includes implementing different key cloud capabilities which will provide an agile, holistic, adaptive, self-updating platform. This will provide organizations an efficient and easily adaptable platform for their business needs no matter where they are located.

Supports all edges

SASE creates one network for the entire organization’s resources — data centers, branch offices, cloud resources, and mobile and remote users. For example, SD-WAN appliances support physical edges while mobile clients and clientless browser access connect users on the go.

Globally distributed

To ensure complete networking and security abilities globally and on the go, SASE platforms must be globally distributed to organizations. This includes delivering a low-latency service to enterprise edges.

SASE Questions and Answers

What is the difference between SASE and CASB?

CASB is effective at sitting between cloud resources and employees, and helps IT to monitor their activity and limit resource access, but it’s only one component of the full SASE model. While SASE relies on CASB for tailored, user-based access policies, it also offers functions that are found outside of CASB such as 2FA, DNS security and other security tools.

What is the difference between SASE and SD-WAN?

SD-WAN is a networking infrastructure that takes advantage of the flexibility of software, and allows IT to remotely create and manage networks without the addition of hardware. SASE is built upon this infrastructure as well, but offers additional utility such as the consumption of security features and more precise segmentation (and policy).

What is the difference between point solutions (SD-WAN, NGFW, SWG, VPN) and SASE?

SASE is a unified and simplified platform that replaces these point products. Firewalls, VPNs, Secure Web Gateways, Cloud Access Service Brokers and more all have a home in the SASE cloud-based architecture. The difference is easier orchestration, better visibility, and proactive threat detection.

What does it mean that SASE is on the “Edge”?

The “edge” means that SaaS security and network resources are brought as close to users as possible. Now that many network entrants are remote, SASE providers help businesses secure these resources in data centers nearest their employees, offering lower latency and better access than alternative solutions like a VPN.

Where can I get a SASE product?

As defined by Gartner SASE products are still in development, though the industry is quickly coming together to make them materialize. Mergers and acquisitions, technology partnerships and other efforts are being accomplished at a fast pace, and will soon result in some of the first truly unified SASE platforms to hit the market.

I’ve adopted SASE - is it still possible to be hacked?

If you’ve adopted a SASE approach, it’s still possible to be hacked, but the point of SASE isn’t to promise that this will never happen. SASE reduces the attack surface and makes it prohibitively expensive and difficult for hackers to breach the network, when it’s done correctly. Given that hackers mostly focus on the weakest among the herd, SASE is an effective way to remove the target from your business’s back.

Discover How The SASE Model Can Transform Your Organization

With Perimeter 81, we are providing secure, private and unrestricted Internet access to businesses. To do so, we are transforming traditional network security technology with one unified Zero Trust Secure Network as a Service.

Our Secure Access Service Edge (SASE) platform offers:

Ready to get started?

Simplify your network today.

Perimeter 81 Ltd. © 2020 | Privacy and Legal

We use cookies to provide our services and for analytics and marketing. To find out more about our use of cookies, please see our Privacy Policy. By continuing to browse our website, you agree to our use of cookies.