Cisco Secure Access Service Edge (SASE)

Main articles:

• SaaS - History. Philosophy. Development Drivers
• Firewall
• DLP - Data Loss/Leak Prevention

2021: SASE Extended Architecture Announcement

On April 1, 2021, Cisco introduced the enhanced Secure Access Service Edge (SASE) architecture. Cisco also introduced add-ons to its cloud-based SecureX platform to speed threat detection and optimize its performance.

In addition, Cisco announced the possibility of acquiring all basic SASE components as a single complex with a further transition to a single subscription service. The company offers all structural blocks of the SASE architecture, including networks, remote access, cloud security, zero-trust network access, and visualization. Cisco's strategy is to combine all these functions into a single service and provide seamless secure access to any application, network, or cloud.

Cisco Secure Access Service Edge (SASE)

As of April 2021, workers are increasingly switching to hybrid mode, and traditional networks and security systems do not have time to rebuild and comply with the business model. As of 2021, there is a critical moment when something needs to be changed, while all customers are unique and they need to flexibly determine the possibility of embedding the SASE architecture into the existing environment. There is no universal solution for digital transformation, the same applies to the SASE architecture. narrated by Gee Rittenhouse, Senior Vice President and General Manager, Cisco Information Security

Cisco also offers functionality that reveals the possibilities of using SASE:

• The data loss prevention feature of the Cisco Umbrella service detects and blocks the transmission of sensitive data to unwanted destinations, preventing data extraction and ensuring compliance with regulatory requirements.
• The browser isolation feature of the Cisco Umbrella service allows users to safely browse websites, protecting endpoints and corporate networks from exploits that exploit browser vulnerabilities.
• Cisco malware Umbrella Cloud Detection detects and removes malware ON from cloud applications. Data Storage Organizations increasingly trust cloud applications with their critical data, and they need to ensure that users have access to that data even from unmanaged devices, so they need to secure their cloud applications.
• Cisco SD-WAN Cloud Onramp Solution Extension. The release of SD-WAN 17.5 based on Viptela technology enhances connectivity to the cloud, optimizing security and predictability of application behavior. Cisco integration now includes in addition to AWS and Azure, including Google Cloud and Megaport. In addition, Meraki MX extends SD-WAN connectivity from branch offices to public cloud resources such as AWS, Azure, and Alibaba.
• Integration of New SD-WAN and Cloud Security. The integration of Cisco Meraki MX with Cisco Umbrella, expanding the existing integration of Cisco SD-WAN networks and security systems with Viptela and Umbrella technologies, accelerates the deployment of cloud security systems for distributed locations and optimizes tunnel connectivity using the IPSec (Internet Protocol Security) protocol.
• Visualization. Cloud and Internet-analytics ThousandEyes as part of the SASE offering provides organizations with an overview of any network, from any user to any application, allowing them to eliminate incidents, secure connections, and stable working conditions.
• Password-free authentication. Duo has introduced an infrastructure-independent solution for free authentication, which will be available for open pre-testing in the summer of 2021. Its mission is to provide seamless, zero-trust registration so that enterprises can easily protect cloud and local applications without installing various authentication products or leaving security gaps.

According to the company, in addition to optimizing the transition to SASE, Cisco also optimized protection against emerging threats. Automated workflows include protection from attacks on the SolarWinds supply chain, as well as investigation of phishing and other threats using Cisco Talos analytics. Now the time to detect threats is reduced by 95%, and the time to reflection - by 85%. In addition to 27 already certified technologies ranging from email protection to threat analysis integrated with SecureX, the open platform also supports turnkey configuration with third-party technologies, including Google, ServiceNow, Splunk, etc.

Cisco also provides integration and automation for endpoints. Cisco Secure Client, a unified agent-connector for Cisco Secure Endpoint, AnyConnect, and Umbrella, optimizes deployment and management. Cisco Secure Client serves as a local checkpoint and advanced threat early warning system for solutions such as SASE, Zero Trust, and Extended Detection and Response (XDR).