“Without this, we’ll never make a sea change in trust and security,” he said. In a press briefing, Potti added that zero-trust security has become critical to prevent new kinds of cyberattacks on the increased number of devices that are located outside of traditional corporate networks. “We’ve invested many years to bring our customers a solution that is cost-effective and requires minimal disruption to existing deployments and business processes, using trust, reliability and scale as our primary design criteria,” Potti wrote. BeyondCorp Remote Access was a more limited version of the BeyondCorp framework that implemented zero-trust access controls for the most sensitive applications and data only, to ensure workers can do their jobs safely from home. In a blog post, Google Cloud Security Vice President and General Manager Sunil Potti said that one of the biggest challenges for security teams is to “enable disruptive innovation in security without disrupting security operations.”īeyondCorp Enterprise is both an extension of, and a replacement for the BeyondCorp Remote Access offering that was launched last year to help secure companies that had no choice but to switch to remote work because of the COVID-19 pandemic. Instead, under the zero-trust model, it’s assumed that users requesting access from inside the network are just as untrustworthy as those seeking remote access, so access requests are instead granted based on details about the particular users, their jobs and the security status of the device they’re using. With BeyondCorp Enterprise, access control is no longer based on whether users are requesting that access from inside or outside of the corporate network. That includes the security agents being placed in the browser and embedded threat protection to detect malware.Google LLC said today that its BeyondCorp Enterprise framework is now generally available to all enterprises that want to enjoy the benefits of the “ zero-trust” security model.īeyondCorp Enterprise is a security framework that involves shifting access controls from the perimeter to individual devices and users, thereby enabling employees to work securely from any location without the need for a traditional virtual private network. Google also said support for this enterprise security suite would be built directly in Google Chrome browsers.
BEYONDCORP VS ZERO TRUST VERIFICATION
Flash forward, and Google says it has now expanded the tools available through BeyondCorp and so it is retiring the “Remote Access” part of the name in favor of “Enterprise.”Īmong the new capabilities, the Enterprise version will offer DDoS protection for a company’s entire attack surface, a verification platform for supply chains, improved protection against phishing attempts, end-to-end security between users and applications, automated management of SSL certificates, and additional features that can be added via partners such as Crowdstrike and Tanium. Then a few months later, Google announced an alliance to support the use of the zero-trust standard that is the core of BeyondCorp.
BEYONDCORP VS ZERO TRUST INSTALL
The centralized system meant there was no need to install and configure the software. Rather than using a VPN, BeyondCorp created a central database of all authorized devices and then distributed a matching security certificate for those devices. Last spring, Google released BeyondCorp Remote Access, a product designed to eliminate the need for costly and time-consuming setups of virtual private networks for employees working in remote offices or at home. “Living and breathing zero-trust for this long, we know that organizations need a solution that will not only improve their security posture but also deliver a simple experience for users and administrators.” “BeyondCorp Enterprise brings this modern, proven technology to organizations so they can get started on their own zero-trust journey,” Google Cloud Security vice president and general manager Sunil Potti said in a conference call with reporters.