What is the Palo Alto Networks SASE security solution?
The Prisma Access SASE security solution is designed to replace legacy SASE architectures. The security solution converges next generation SASE and next generation SD WAN into one cloud-delivered platform, securing applications used by workforce users in the branch office, remote or from home. Multiple security products are combined into one integrated service to reduce complexity whilst increasing agility.
- Firewall as a Service (FWaaS): Delivered as a cloud-based service, FWaaS provides next generation firewall (NGFW) capabilities and hyper scale, with security features such as advanced threat protection (ATP), intrusion prevention system (IDS), domain name system (DNS) and web filtering.
- Cloud Secure Web Gateway (SWG): Deployed from the cloud, SWG enables web security for any authorized device, which could be used in a remote location. Performs malicious content inspection, URL filtering, web visibility and web access controls.
- Zero Trust Network Access (ZTNA): Provides secure access to services and applications based on pre-set access control policies.
- Integrated Cloud Access Security Broker (CASB): Cloud-based, integrated CASB does not require a broker, as it is easily deployed due to it being integrated into an existing security stack. It is designed to protect sensitive data which is being transported between company networks, users and SaaS providers. It monitors and manages user behavior to minimize shadow IT risks, whilst securing applications, data and users on-premises and in remote locations and the cloud.
Further, as of May/June 2022, Palo Alto has announced two new integrations between themselves and technology companies Infosys and Thales.
The integration between Palo Alto and Thales will allow customers to implement Palo Alto security systems globally, by integrating Thales SafeNet Trusted Access across Palo Alto's Prisma Access, ML-powered NGFW, Cortex XSOAR and GlobalProtect technologies - deploying Thales' zero trust model across Palo Alto's suite of solutions.
Palo Alto and Infosys aim to provide large-scale cybersecurity solutions for global enterprises, whilst securing hybrid cloud environments, all from a single, unified platform. The solution is also able to integrate SASE and Zero Trust and works by delivering network security from Palo Alto across Infosys' global network of Security Operations Centres (SOCs) and will be aimed at large multinational corporations.
In 2022 Palo Alto Networks introduced software-as-a-service (SaaS) Security Posture Management (SSPM) and new SD-WAN appliances (ION 1200-S and ION 3200) to its Prisma secure access service edge (SASE) platform.
As part of SSPM, Palo Alto Networks’ next-generation cloud access security broker (NG-CASB) is fully integrated within the SASE solution. SaaS settings can be viewed and configured via the SASE portal, bringing SASE with CASB and DLP into a unified cloud console, leaving no gaps in security. Features include access to corporate SaaS applications only for legitimate users, threat prevention via inline ML models, continuous application discovery, categorization and control of new and emerging SaaS applications via App-ID™ technology.
The solution includes some of the most extensive API-based coverage of SaaS apps in the industry, and cloud Enterprise DLP protects sensitive data and supports compliance everywhere.