CDNetworks Enterprise Secure Access (ESA) is a cloud service that provides enterprises with secure remote access. ESA uses a Zero Trust implementation with a Software-Defined Perimeter(SDP) infrastructure to control access to and from any platform in any environment on any device.
Integrated with identity authentication, application acceleration, and unified management, Enterprise Secure Access ensures that only authorized users can access specific private, public, and SaaS applications. In this way, Enterprise Secure Access enables enterprises to establish a secure, efficient, and easy-to-use hybrid networking environment.
Resources
Features
Zero Trust Network Access
Check user identity, device security, and user behavior to ensure that only authorized users and devices are granted access to enterprise applications.
Accelerate Application Access
Accelerate remote access and data transmission with a globally distributed DDoS-resistant edge network to provide users with speedy and secure access to applications.
Secure Applications & Data
Encrypt data transmission, shield resources behind a security gateway, and protect applications with a cloud-based web application firewall (WAF) to safeguard connections.
Flexible Management
Deliver an easy-to-manage platform to set up and maintain applications and users individually and in batches. Provide visualized reports and alerts to aid in intelligent decision making.
Adaptive Access Control
Dynamically adapt access control by continuously evaluating user behavior, identification, device security, and threat intelligence to protect enterprise applications.
Connect Hybrid Network
Integrate enterprise, SaaS, cloud, and on-prem applications into one secure and uniform platform regardless of where applications are hosted.
Boost and Secure Remote Access
Zero-Trust gateway and control center adds flexibility and accurate access control over employee remote network access. Make work-from-anywhere a reality.
Empower Performance with Lower Cost
Replace slow, risky, and complex VPNs with a faster, safer, and easy-to-manage solution, reducing costs for facilities, maintenance, and IT human resources.
Protect Applications from Cyberthreats
Network attackers can hack only the applications visible to them. Enterprise Secure Access shields the origin’s IP address and ports behind a security gateway, and intercepts network attacks before they can reach their destination.
Use Cases
Enterprises with branches in multiple regions often have dozens of internal applications, SaaS applications, and IDC/cloud services installed at various locations. A distributed organization relies completely on stable, reliable, and fast connections to support the needs of its remote workforce. As the Internet becomes more vulnerable to cyberattacks, organizations must safeguard themselves from a dynamic, ever-changing attack landscape, while managing employee access privileges to critical and non-critical systems.
Enterprise Secure Access offers:
- App-based application control that grants appropriate permissions to users.
- Zero-trust and dynamic access control to verify user access.
- Accelerated user access with globally distributed edge networks. Users can access enterprise resources seamlessly regardless of their locations.
- Shielding applications behind a security gateway that rejects network attacks.
With the number of remote workers soaring, enterprises with branches and employees distributed in multiple locations use virtual private networks (VPN) to secure business endpoints. VPN lacks granular access management controls, allowing easy exploits via stolen credentials and session hijacking. They are also overly complex, and require IT specialists to perform manual fixes and updates to ensure stable connectivity.
Enterprise Secure Access offers:
- One uniformed platform to manage all applications and users, with deployment requiring minimal IT personnel.
- Zero Trust Network Access as a service to harden your security posture while reducing VPN facility and maintenance costs.
- Applications and data protection by hiding resource identities, supporting SSL-encrypted data transmissions, and providing cloud-based WAF protection.
- Accelerated user access with globally distributed edge networks. Users can access enterprise resources seamlessly regardless of their locations.
Unlike enterprise-hosted systems, SaaS applications such as Salesforce and Office365 and public applications often are hosted in an overseas cloud environment. Such environments are inherently insecure, susceptible to high latency, and predisposed to unstable connections between international networks — all of which lead to a poor user experience that hinders productivity. Most of these apps are hosted on data-sensitive systems that require high-levels of access control.
Enterprise Secure Access offers:
- Accelerated user access with globally distributed edge networks. Users can access enterprise resources seamlessly regardless of their locations.
- App-based access control and zero trust in user access always verifies user access to block abnormal requests and dynamically adjust user control policies.
- User behavior monitoring, auditing, and analyzing in applications, and provide visualized reports so managers can render better informed decisions.
Enterprises with a mobile workforce find their employees accessing internal systems, such as hosted data centers, from any location — home or on the go — using a myriad of devices and carrier networks. These users demand a stable and secure connection to which it is easy to connect.
Enterprise Secure Access offers:
- Accelerated user access with globally distributed edge networks. Users can access enterprise resources seamlessly regardless of their locations.
- Easy access to all applications on CDNetworks ESA client running on Win, macOS, Linux, Android and iOS, or through plug-in free web access. Clean up desktop with one visualized portal.
- Comprehensive access control to allow only authorized users, IP addresses, and devices to access specific applications.
- Shielding internal systems and applications behind a security gateway to eliminate any attack surface. Protect data transmission with SSL encryption.
For easy supply chain/retail management, enterprises often need to expose internal supplier and retailing systems to the public network for partners and employees to access. In such scenarios, business systems face unknown security risks from the public network or from malicious users with authorized accounts.
Enterprise Secure Access offers:
- Comprehensive access control to allow only authorized users, IP addresses, and devices to access dedicated applications.
- Multiple authentication factors used: password, SMS, TOTP.
- Constant monitoring of user behavior, device security, and threat intelligence, with the ability to dynamically adjust access permissions based on trust scores associated with user accounts.
- Applications and data protection by hiding resource identities, supporting SSL-encrypted data transmissions, and providing cloud-based WAF protection.
How it Works
Enterprise Secure Access is a cloud service based on SDP and Zero Trust architecture. With Zero Trust at the core of its infrastructure, Enterprise Secure Access evaluates each user’s identity, device, and risk before forwarding access request to enterprise applications.
A control center makes it easy to manage user privileges by establishing a preset trusted posture, then optimizing it continuously by evaluating user behaviors, device security, and threat intelligence. If any treat is detected to the account, the control center will dynamically adapt user privileges.
A security gateway establishes a secure tunnel between applications and clients to block unauthorized requests from external environments. It also privatizes resource IP addresses and ports to eliminate potential attack surfaces, ensure data integrity, and secure access.