Enterprise Secure Access
　（ゼロトラスト実装SASEモデル）

With the number of remote workers soaring, enterprises with branches and employees distributed in multiple locations use virtual private networks (VPN) to secure business endpoints. VPN lacks granular access management controls, allowing easy exploits via stolen credentials and session hijacking. They are also overly complex, and require IT specialists to perform manual fixes and updates to ensure stable connectivity.

ESAがご提供できる機能:

• One uniformed platform to manage all applications and users, with deployment requiring minimal IT personnel.
• Zero Trust Network Access as a service to harden your security posture while reducing VPN facility and maintenance costs.
• Applications and data protection by hiding resource identities, supporting SSL-encrypted data transmissions, and providing cloud-based WAF protection.
• グローバルに分散したエッジネットワークにより、ユーザアクセスを高速化。ユーザは場所を問わず、組織内リソースにシームレスにアクセスすることができます。

Unlike enterprise-hosted systems, SaaS applications such as Salesforce and Office365 and public applications often are hosted in an overseas cloud environment. Such environments are inherently insecure, susceptible to high latency, and predisposed to unstable connections between international networks — all of which lead to a poor user experience that hinders productivity. Most of these apps are hosted on data-sensitive systems that require high-levels of access control.

ESAがご提供できる機能:

• グローバルに分散したエッジネットワークにより、ユーザアクセスを高速化。ユーザは場所を問わず、組織内リソースにシームレスにアクセスすることができます。
• App-based access control and zero trust in user access always verifies user access to block abnormal requests and dynamically adjust user control policies.
• User behavior monitoring, auditing, and analyzing in applications, and provide visualized reports so managers can render better informed decisions.

Enterprises with a mobile workforce find their employees accessing internal systems, such as hosted data centers, from any location — home or on the go — using a myriad of devices and carrier networks. These users demand a stable and secure connection to which it is easy to connect.

ESAがご提供できる機能:

• グローバルに分散したエッジネットワークにより、ユーザアクセスを高速化。ユーザは場所を問わず、組織内リソースにシームレスにアクセスすることができます。
• Easy access to all applications on CDNetworks ESA client running on Win, macOS, Linux, Android and iOS, or through plug-in free web access. Clean up desktop with one visualized portal.
• Comprehensive access control to allow only authorized users, IP addresses, and devices to access specific applications.
• Shielding internal systems and applications behind a security gateway to eliminate any attack surface. Protect data transmission with SSL encryption.

For easy supply chain/retail management, enterprises often need to expose internal supplier and retailing systems to the public network for partners and employees to access. In such scenarios, business systems face unknown security risks from the public network or from malicious users with authorized accounts.

ESAがご提供できる機能:

• Comprehensive access control to allow only authorized users, IP addresses, and devices to access dedicated applications.
• Multiple authentication factors used: password, SMS, TOTP.
• Constant monitoring of user behavior, device security, and threat intelligence, with the ability to dynamically adjust access permissions based on trust scores associated with user accounts.
• Applications and data protection by hiding resource identities, supporting SSL-encrypted data transmissions, and providing cloud-based WAF protection.