CDNetworks Enterprise Secure Access (ESA) is a cloud service that provides enterprises with secure remote access. ESA uses a Zero Trust implementation with a Software-Defined Perimeter(SDP) infrastructure to control access to and from any platform in any environment on any device.
Integrated with identity authentication, application acceleration, and unified management, Enterprise Secure Access ensures that only authorized users can access specific private, public, and SaaS applications. In this way, Enterprise Secure Access enables enterprises to establish a secure, efficient, and easy-to-use hybrid networking environment.
リソース
サービス機能
Zero Trust Network Access
Check user identity, device security, and user behavior to ensure that only authorized users and devices are granted access to enterprise applications.
Accelerate Application Access
Accelerate remote access and data transmission with a globally distributed DDoS-resistant edge network to provide users with speedy and secure access to applications.
Secure Applications & Data
Encrypt data transmission, shield resources behind a security gateway, and protect applications with a cloud-based web application firewall (WAF) to safeguard connections.
Flexible Management
Deliver an easy-to-manage platform to set up and maintain applications and users individually and in batches. Provide visualized reports and alerts to aid in intelligent decision making.
Adaptive Access Control
Dynamically adapt access control by continuously evaluating user behavior, identification, device security, and threat intelligence to protect enterprise applications.
Connect Hybrid Network
Integrate enterprise, SaaS, cloud, and on-prem applications into one secure and uniform platform regardless of where applications are hosted.
Boost and Secure Remote Access
Zero-Trust gateway and control center adds flexibility and accurate access control over employee remote network access. Make work-from-anywhere a reality.
Empower Performance with Lower Cost
Replace slow, risky, and complex VPNs with a faster, safer, and easy-to-manage solution, reducing costs for facilities, maintenance, and IT human resources.
Protect Applications from Cyberthreats
Network attackers can hack only the applications visible to them. Enterprise Secure Access shields the origin’s IP address and ports behind a security gateway, and intercepts network attacks before they can reach their destination.
Use Cases
Enterprises with branches in multiple regions often have dozens of internal applications, SaaS applications, and IDC/cloud services installed at various locations. A distributed organization relies completely on stable, reliable, and fast connections to support the needs of its remote workforce. As the Internet becomes more vulnerable to cyberattacks, organizations must safeguard themselves from a dynamic, ever-changing attack landscape, while managing employee access privileges to critical and non-critical systems.
Enterprise Secure Access offers:
- App-based application control that grants appropriate permissions to users.
- Zero-trust and dynamic access control to verify user access.
- Accelerated user access with globally distributed edge networks. Users can access enterprise resources seamlessly regardless of their locations.
- Shielding applications behind a security gateway that rejects network attacks.
サービス概要図
Enterprise Secure Access is a cloud service based on SDP and Zero Trust architecture. With Zero Trust at the core of its infrastructure, Enterprise Secure Access evaluates each user’s identity, device, and risk before forwarding access request to enterprise applications.
A control center makes it easy to manage user privileges by establishing a preset trusted posture, then optimizing it continuously by evaluating user behaviors, device security, and threat intelligence. If any treat is detected to the account, the control center will dynamically adapt user privileges.
A security gateway establishes a secure tunnel between applications and clients to block unauthorized requests from external environments. It also privatizes resource IP addresses and ports to eliminate potential attack surfaces, ensure data integrity, and secure access.
