Aryaka's Secure Web Gateway and Firewall-as-a-Service adds cloud-based security services to its Zero Trust WAN platform, as it moves toward providing SASE capabilities for its users. Credit: CIS Long-time WAN provider Aryaka has released a version of its Zero Trust WAN product that incorporates a new Secure Web Gateway and Firewall-as-a-Service as it works toward a SASE-enabled WAN offering. The idea is to provide a much more updated version of WAN to enterprise customers—where SD-WAN traditionally lived in a box in branch offices, the pandemic and the evolving SASE model prompted a more flexible rethink. Now, Aryaka’s latest model is an entirely cloud-based offering, routing secure traffic to branch offices or remote employees while being able to employ robust security technologies via Aryaka’s own cloud. “It’s a great big black box,” said IDC research director Chris Rodriguez. “You’re going to abstract away all the traditional security stacks.” SASE incorporates security into SD-WAN SASE, or secure access service edge, is a Gartner Research-coined term that’s been around since 2019. It describes an SD-WAN offering with security features like identity management, policy enforcement, and device health monitoring built-in—and one that can also be delivered via the cloud, rather than requiring an appliance. It’s a popular idea among vendors, given its ability to scale readily based on usage. It’s become a widespread buzzword in the networking sector, with vendors using it to describe any kind of cloud-based, multiuse security product, even if it doesn’t meet Gartner’s fairly strict definition for true SASE. “It’s been so hard for anyone to fulfill the full concept of SASE—it’s a lot!” said Rodriguez. “Aryaka’s taking more of an approach where they’re trying to integrate best-of-breed.” The same is true for zero trust, which Aryaka uses to describe a wide range of its offerings, including the new Secure Web Gateway. According to Forrester Research, which first described the term, it means that systems should be architected in such a way as to grant the minimum amount of access to any entity or given piece of data at any given time. According to Rodrigue, Aryaka is handling some of the foundational security functionality and policy by itself, but leaving open the option for users to address more parts of the SASE equation—like cloud access security broker technology, and intrusion prevention—themselves. Aryaka’s Secure Web Gateway, the company said, is designed as a defense for both site-to-internet and user-to-internet traffic. The company highlights benefits like reduced operational complexity, easier patching and updating for security components, correlated viewing of different security systems during the same events, and lower overall TCO, thanks to the centralized management and tight integration between disparate parts of the security equation. It’s likely to appeal most heavily to companies that are large enough to have separate teams for networking and security, but not so large that their security and networking teams have inordinately complicated in-house technology, according to IDC’s Rodriguez. “I do think it’s been traditionally a smaller enterprise/midmarket [play,]” he said. “This will help bridge those gaps [between security and networking.]” Particularly large companies, by contrast, might have stricter requirements and more complex systems that couldn’t be replaced on a turnkey basis by Aryaka’s SASE offering. The secure web gateway is available now as part of Aryaka’s Zero Trust WAN offering, which is priced on a per-site or per-user basis. Related content news analysis Red Hat unveils image mode for its Linux distro New container image deployment method for Red Hat Enterprise Linux is aimed at helping enterprises streamline operations and management. By Maria Korolov May 09, 2024 5 mins Linux Networking news Insecure protocols leave networks vulnerable: report The Cato CTRL SASE Threat Report reveals the trusted traffic networks must stop, as many enterprises still rely on the use of insecure protocols such as HTTP, Telnet and early versions of SMB. By Denise Dubie May 09, 2024 4 mins SASE Network Security Networking feature What is a digital twin and why is it important to IoT? Digital twins are virtual replicas of physical devices that IT pros and data scientists can use to run simulations before actual devices are built and deployed. Digital twins can also take real-time IoT data and apply AI and data analytics to optimiz By Josh Fruhlinger and Keith Shaw May 09, 2024 17 mins Internet of Things Network Security Networking news 2024 global network outage report and internet health check ThousandEyes tracks internet and cloud traffic and provides Network World with weekly updates on the performance of ISPs, cloud service providers, and UCaaS providers. By Ann Bednarz May 08, 2024 43 mins Internet Service Providers Network Management Software Cloud Computing PODCASTS VIDEOS RESOURCES EVENTS NEWSLETTERS Newsletter Promo Module Test Description for newsletter promo module. Please enter a valid email address Subscribe