SASE Solutions for Hybrid Work

In this article, you will get all the information regarding SASE Solutions for Hybrid Work

Work is an activity, not a place. With hybrid working here to stay, businesses around the world need security as flexible as their workforce while minimizing downtime and delivering exceptional user experiences. This dynamic work environment, combined with significant and sustained cloud adoption, is driving organizations to embrace the secure access service edge (SASE). The SASE concept is simple: secure and efficient connectivity between users working anywhere; at home, in the branch or on the go, and resources that reside anywhere; cloud, SaaS, data centers and the web. The transition from hardware-based security point products to a cloud-delivered converged model makes it possible to dramatically simplify the security stack while improving security posture and user experience.

Hybrid working increases cybersecurity risks

Most of us are fully aware that the hybrid workforce significantly increases the attack surface for all businesses. Cloud services and applications, personal devices, and remote access tools essentially render an organization’s security perimeters obsolete, resulting in more cyberattacks. IT administrators often have to compromise between security and user experience as they grapple with these new ways of working and their technologies. So it’s no surprise that Forrester says that 80% of business and security leaders say their organizations are more exposed to risk as a result of working remotely.

As such, we needed a greater focus on the “Secure” part of SASE, where the security effectiveness of these solutions is paramount. However, no in-depth test results were available, as no one in the cybersecurity industry had conducted an analysis of common security services deployed by customers.

Proof of the best SASE security solutions in the industry

We here at Palo Alto Networks identified this missing but critical link and discussed it with a leading testing company involved in independent testing, AV-Comparatives Gmbh. The goal was to present the industry’s first and most in-depth test focused on the security effectiveness of SASE solutions. We wanted to go beyond traditional exploit and circumvention testing which by itself does not represent the effectiveness of security a customer will experience. The test scenarios focused on a wide range of security services, such as URL filtering, DNS security, malware protection, and more, and were designed to be more realistic, focusing on real-world problems that customers frequently encounter.

AV-Comparatives SASE Report

the AV-Comparatives SASE Report set out to determine which SASE security solution was the most effective in real-world scenarios. The overall test procedure included 8 different subtests, each covering an important aspect of the respective product’s capabilities in a specific real-world scenario. The Web URL Filtering Protection, DNS Security, and Malware Protection subtests were broken down into additional individual categories, as shown below:

  1. Web URL Filtering Protection (CnC Block Rate, Malware Block Rate, Phishing Block Rate, Average Benign URL Categorization)
  2. DNS security (DNS tunneling prevention, DGA protection rate)
  3. Malware Protection (Sandbox Scan Time, Modified Malware Protection, Malware Protection via Email Protocol, Artifact Extraction, File Transfer)
  4. Public SaaS Application Security
  5. Private SaaS Application Security
  6. vulnerability protection
  7. Evasion Protection
  8. Credential Theft Prevention

The test compared prism access with two other solutions. Although Palo Alto Networks sponsored this test, we knew that credibility was essential for it to matter. Testing was conducted independently by AV-Comparatives and no samples were shared with Palo Alto Networks beforehand. The test result shows dramatic differences in security effectiveness between Prisma Access and competitor products.

Rising Expectations for SASE Security

A SASE solution must be able to apply uniform and ubiquitous security for a user from any location to any application, regardless of the port/protocol being used, detecting and preventing malicious activity bi-directionally given insider threats and/or connecting users inadvertently from a previously infected host. . Therefore, overall threat protection capabilities and integrity of attack surface protection for both remote and branch office user-based scenarios are critical.

For a detailed look at the test results and methodology, read AV-Comparatives’ SASE Comparative Report here.

Jason Georgi serves as Palo Alto Networks Global Field CTO for Prisma Access and Prisma SASE. He focuses on building C-level relationships and advising client executives on the strategic alignment of cloud-delivered security solutions as enablers of clients’ cloud transformation journey.

SASE Solutions for Hybrid Work

For more visit

Latest News by

Leave a Comment