Work is an exercise, not a spot. With hybrid work right here to remain, enterprises all over the place want safety as versatile as their workforce, whereas concurrently minimizing downtime and delivering distinctive person experiences. This dynamic work setting, mixed with vital, sustained cloud adoption, is driving organizations to undertake safe entry service edge (SASE). The SASE idea is easy — safe, environment friendly connectivity between customers working anyplace; at house, within the department, or on the go, and assets residing anyplace; cloud, SaaS, information facilities, and the online. Transitioning from hardware-based safety level merchandise to a converged, cloud-delivered mannequin makes it doable to dramatically simplify the safety stack whereas enhancing safety posture and person expertise.
Hybrid Work Will increase Cybersecurity Dangers
Most of us are totally conscious the hybrid workforce considerably will increase the assault floor for all enterprises. Cloud providers and apps, private units, and distant entry instruments basically render a corporation’s safety perimeters out of date, leading to extra cyberattacks. IT managers usually must compromise between safety and person expertise as they grapple with these new methods of working and their applied sciences. Subsequently, it’s no shock Forrester claims that 80% of safety and enterprise leaders say their organizations are extra uncovered to threat on account of distant work.
As such, we’ve wanted extra concentrate on the “Safe” a part of SASE the place these options’ safety efficacy is paramount. Nonetheless, there have been no in-depth take a look at outcomes accessible, as nobody within the cybersecurity business had carried out an evaluation of the frequent safety providers deployed by prospects.
Testing the Trade’s Prime SASE Safety Options
Right here at Palo Alto Networks we recognized this lacking, but crucial, hyperlink and mentioned it with a number one testing firm concerned in unbiased testing, AV-Comparatives Gmbh. The target was to come back out with the business’s first and most in-depth take a look at targeted on the safety efficacy of SASE options. We wished to transcend simply conventional testing of exploits and evasions that by themselves don’t symbolize the safety efficacy {that a} buyer will expertise. The take a look at situations targeted on a variety of safety providers, like URL filtering, DNS safety, Malware safety, and extra, and have been designed to be extra reasonable, specializing in real-world points that prospects usually face.
AV-Comparatives SASE Report
The AV-Comparatives SASE report got down to decide which SASE safety resolution was the best in actual world situations. The general take a look at process included 8 completely different sub-tests, every overlaying a significant side of the respective product’s capabilities in a selected real-world state of affairs. The Internet URL Filtering Safety, DNS Safety, and Malware Safety sub-tests have been damaged down into additional particular person classes, as proven beneath:
- Internet URL Filtering Safety (CnC Block Price, Malware Block Price, Phishing Block Price, Common Benign URL Categorization)
- DNS Safety (DNS Tunnelling Prevention, DGA Safety Price)
- Malware Safety (Sandbox Evaluation Time, Safety In opposition to Modified Malware, Malware Safety through Electronic mail Protocol, Artifact Extraction, File Switch)
- Public SaaS Utility Safety
- Personal SaaS Utility Safety
- Vulnerability Safety
- Evasion Safety
- Credential-Theft Prevention
The take a look at in contrast Prisma Entry with two different options. Whereas Palo Alto Networks sponsored this take a look at, we knew credibility was crucial for it to matter. Testing was carried out by AV-Comparatives independently and no samples have been shared with Palo Alto Networks beforehand. The take a look at end result reveals dramatic variations in safety efficacy between Prisma Entry and the competing merchandise.
Elevating Expectations for SASE Safety
A SASE resolution ought to have the ability to implement uniform and ubiquitous safety for a person from any location to any utility, no matter port/protocol getting used, detecting and stopping malicious exercise bidirectionally given insider threats and/or customers inadvertently connecting from a beforehand contaminated host. Therefore, the general risk safety capabilities, and the completeness of assault floor safety for each distant and department user-based situations are crucial.
For an in depth view of the take a look at outcomes and methodology, learn the AV-Comparatives SASE Comparative Report right here.
Jason Georgi serves as Palo Alto Networks’ world Discipline CTO for Prisma Entry and Prisma SASE. He focuses on constructing C-level relationships and advising shopper executives on the strategic alignment of cloud-delivered safety options as enablers of shoppers’ cloud transformation journey.