We have been talking about how it's time to re-evaluate giving full access to the corporate network for some time. In fact, Akamai's Sr. Director of Enterprise Security & Infrastructure Engineering talks about one of his core goals--No VPN--here.
Over the last few days, I am sure many teams who are taking the No VPN route are even more thankful. The recent news about yet another patching fire drill--this time due to a vulnerability in SSL VPN functionality of a popular security appliance--has left many security and IT teams dismayed.
There has to be an easier way, right?
There are enterprises that provide access to their apps in much the same way they did twenty years ago by using complex, antiquated technologies like VPN and remote desktop. This outdated technology doesn't support access to apps for their growing mobile workforce or their global partner ecosystem without the associated risk of full network access.
Old school VPNs and remote desktop technologies clearly don't cut it anymore.
At Akamai, we drink our own champagne (so to speak), and like many of our customers, use our Enterprise Application Access. Enterprise Application Access is a fundamentally new approach--built on Zero Trust and CARTA principles in the same vein as Google BeyondCorp and software defined perimeters--to enable secure app access that is easy for IT, inherently reduces risk, and delivers exceptional user experiences.
Users can interact with applications without having corporate network access, yet apps are completely hidden from the Internet. There are no appliances to patch, no software upgrades or updates, and no hardware to manage. User management--from on-boarding to off-boarding--and security capabilities such as multi-factor authentication are enabled with a single click. And the best part: there are no required clients to roll out. Users can access any HTTP/S, SSH, or RDP app directly from any browser.
It is clear that critical vulnerabilities will always happen, but maybe it's time they become someone else's problem. We believe in offering our security and performance capabilities as cloud services where Akamai is responsible for patching and maintenance so our customers can focus on more strategic initiatives.
The bottom line is that it's time to move on from VPNs. Akamai did--maybe you should too.
We all know this isn't a lift and shift transition that is going to happen overnight, however moving toward a cloud services based app access architecture via a phased approach makes the transition surprisingly easy.
If you are interested in learning more check out Enterprise Application Access.