Aryaka's Secure Web Gateway and Firewall-as-a-Service adds cloud-based security services to its Zero Trust WAN platform, as it moves toward providing SASE capabilities for its users. Credit: CIS Long-time WAN provider Aryaka has released a version of its Zero Trust WAN product that incorporates a new Secure Web Gateway and Firewall-as-a-Service as it works toward a SASE-enabled WAN offering. The idea is to provide a much more updated version of WAN to enterprise customers—where SD-WAN traditionally lived in a box in branch offices, the pandemic and the evolving SASE model prompted a more flexible rethink. Now, Aryaka’s latest model is an entirely cloud-based offering, routing secure traffic to branch offices or remote employees while being able to employ robust security technologies via Aryaka’s own cloud. “It’s a great big black box,” said IDC research director Chris Rodriguez. “You’re going to abstract away all the traditional security stacks.” SASE incorporates security into SD-WAN SASE, or secure access service edge, is a Gartner Research-coined term that’s been around since 2019. It describes an SD-WAN offering with security features like identity management, policy enforcement, and device health monitoring built-in—and one that can also be delivered via the cloud, rather than requiring an appliance. It’s a popular idea among vendors, given its ability to scale readily based on usage. It’s become a widespread buzzword in the networking sector, with vendors using it to describe any kind of cloud-based, multiuse security product, even if it doesn’t meet Gartner’s fairly strict definition for true SASE. “It’s been so hard for anyone to fulfill the full concept of SASE—it’s a lot!” said Rodriguez. “Aryaka’s taking more of an approach where they’re trying to integrate best-of-breed.” The same is true for zero trust, which Aryaka uses to describe a wide range of its offerings, including the new Secure Web Gateway. According to Forrester Research, which first described the term, it means that systems should be architected in such a way as to grant the minimum amount of access to any entity or given piece of data at any given time. According to Rodrigue, Aryaka is handling some of the foundational security functionality and policy by itself, but leaving open the option for users to address more parts of the SASE equation—like cloud access security broker technology, and intrusion prevention—themselves. Aryaka’s Secure Web Gateway, the company said, is designed as a defense for both site-to-internet and user-to-internet traffic. The company highlights benefits like reduced operational complexity, easier patching and updating for security components, correlated viewing of different security systems during the same events, and lower overall TCO, thanks to the centralized management and tight integration between disparate parts of the security equation. It’s likely to appeal most heavily to companies that are large enough to have separate teams for networking and security, but not so large that their security and networking teams have inordinately complicated in-house technology, according to IDC’s Rodriguez. “I do think it’s been traditionally a smaller enterprise/midmarket [play,]” he said. “This will help bridge those gaps [between security and networking.]” Particularly large companies, by contrast, might have stricter requirements and more complex systems that couldn’t be replaced on a turnkey basis by Aryaka’s SASE offering. The secure web gateway is available now as part of Aryaka’s Zero Trust WAN offering, which is priced on a per-site or per-user basis. Related content analysis What is a virtual machine, and why are they so useful? Many of today’s IT innovations have their roots in virtual machines (VM) and their ability to separate software from hardware. By Keith Shaw May 03, 2024 9 mins Virtualization Data Center Networking analysis What is DNS and how does it work? The Domain Name System resolves the names of internet sites with their underlying IP addresses, adding efficiency and security in the process. By Josh Fruhlinger and Keith Shaw May 03, 2024 11 mins Internet Networking news Appeal court overturns $1.6bn mainframe software ‘poaching’ ruling against IBM AT&T ‘independently decided” to replace BMC software, the appeals court found. By John Leyden May 03, 2024 1 min Mainframes news Cisco, Red Hat extend networking, AI integrations Cisco and Red Hat will demo new network product integrations and introduce AI validated designs at the upcoming Red Hat Summit 2024. By Michael Cooney May 03, 2024 4 mins Network Virtualization Cloud Computing Networking PODCASTS VIDEOS RESOURCES EVENTS NEWSLETTERS Newsletter Promo Module Test Description for newsletter promo module. Please enter a valid email address Subscribe