Cloudbrink Presents Firewall-as-Service for the Hybrid Workplace
December 6, 2023
PRESS RELEASE
SUNNYVALE, CA — DECEMBER 5, 2023 — Cloudbrink has added firewall-as-a-service (FWaaS) to its zero-trust access solution, the first vendor to provide granular security controls all the way to the user edge for the comprehensive protection of endpoint devices.
The company, which delivers high-performance zero-trust application connectivity to the hybrid workforce, says traditional and next generation firewalls fail to protect end users and their devices.
Offloading remote-user security functions improves the stability of existing firewalls and the network performance experienced by remote users, Cloudbrink claims.
Prakash Mana, chief executive officer of Cloudbrink, said: “Firewalls were designed to protect the data center, then the network, and now the cloud. But you have to deliver protection where data is consumed and curated, which is with your users - and increasingly users are everywhere.”
“Existing firewalls were never designed with a large work-from-anywhere workforce in mind. Our FWaaS takes care of the remote users, leaving the existing firewall to do the jobs it was intended for - such as Layer 3 protection against DDoS attacks. If you’re only using a firewall to protect a remote workforce, the Cloudbrink service can replace it altogether.”
Cloudbrink’s FWaaS enables admins to set granular controls according to static and dynamic properties of the end-users and their devices. Static properties include rules about what resources or applications can be accessed by individuals. Soon to be released dynamic properties cover the compliance of the device - when a virus scan ran last, for example.
Also scheduled for a future release are reporting capabilities enabling security and networking teams to spot anomalies based on user behaviour and opportunities to tune application performance.
Cloudbrink’s service already implements zero-trust access and moving target defense principles. It uses rotational mTLS (mutual Transport Layer Security) 1.3 to refresh user certificates automatically at short intervals. Certificates that can be set to expire every few minutes rather than after months or years mean that even when a device is compromised an attacker would only have a narrow window for an attack.
Mana said: “Firewalling for endpoints is an absolute requirement for security in distributed systems, which has become even more urgent with the growth of the hybrid workforce.
“Our solution provides better management and control for IT teams without compromising the productivity of end-users. We already deploy best-in-class zero-trust security to control access at the user level. The FWaaS enables the service to be tailored more closely to the security needs of the enterprise.”
Separately, Cloudbrink announced that customers will be able to use the service to access data center applications using IPSec as an alternative to the Cloudbrink Connector. The IPsec capability will support connections through existing network firewalls, SD-WAN gateways, routers and other IPSec devices.
“The Cloudbrink Connector uses TLS 1.3, which is the gold standard for security, but we’ve listened to customers who want a migration path and aren’t ready to make changes at the data center just yet,” said Mana.
FWaaS functionality and IPsec connectivity are bundled with the Cloudbrink service starting December 2023.
About Cloudbrink
Cloudbrink brings high-performance connectivity to the modern hybrid workforce anywhere in the world. The company uses AI and ML to provide edge-native hybrid access as a service (HAaaS). HAaaS delivers accelerated performance for cloud, SaaS, and data center applications.
Cloudbrink’s software-only solution includes the world's first personal SD-WAN with high-performance zero-trust access (ZTA) and Automated Moving Target Defense (AMTD) security. With the ability to use thousands of dynamic PoPs called FAST edges, Cloudbrink provides an in-office experience with a 30x increase in application performance and reduced operational complexity for network, security, and IT administrators.
Based in Sunnyvale, California, the Cloudbrink team has decades of combined expertise in last-mile network connectivity, security, and distributed systems.
You May Also Like
DevSecOps/AWS
Oct 17, 2024Social Engineering: New Tricks, New Threats, New Defenses
Oct 23, 202410 Emerging Vulnerabilities Every Enterprise Should Know
Oct 30, 2024Simplify Data Security with Automation
Oct 31, 2024