A year ago, Forrester set out to document a new model for security and networking that was gaining mindshare in the market. As a result, Forrester recently published its research in a new report that introduces the Zero Trust Edge model for security and network services. There's a similar name going around in the market, "Secure Access Services Edge" (SASE) to describe the same model. We put the emphasis on the Zero Trust part.
Forrester is an advocate for this model for several reasons. But the primary one is this: The internet was designed without security in mind. Should we, as technologists, just expect every organization in the world to simply attach themselves directly to it and hope it all works out for them? For 25 years, we've just been putting Band-Aids on top of Band-Aids, hoping to stop the cybersecurity bleeding, but the carnage gets worse every year. The Zero Trust Edge (ZTE) model is a safer on-ramp to the internet for organizations' physical locations and remote workers.
A ZTE network is a virtual network that spans the internet and is directly accessible from every major city in the world. It uses Zero Trust Network Access (ZTNA) to authenticate and authorize users as they connect to it and through it. If those users are accessing corporate services like an on-prem application or Office 365[1], they may rarely even "touch" the internet, except to be safely tunneled through it, and they'll certainly be kept away from the bad parts of town.
Tactics Vs. Strategy
Many enterprises are looking at this model to tactically solve a specific problem: securing the remote workforce[2]. These organizations realize that acquiring more VPN licenses[3] during the COVID-19 lockdown[4] was just a stopgap