Acreto SASE+Plus

Solution Use-cases

Work From Anywhere / VPN Replacement

1

VPNs offer privacy but little else. Acreto SASE+Plus replaces traditional VPNs with an offering that integrates connectivity, privacy and security. It is globally available yet provides a local experience that is elegant, simple and sustainable.

VPN Replacement Software Defined Perimeter (SDP) include:
  • Support for all popular devices and operating systems:
    • Computers running OS X, Windows, Linux
    • Mobile devices running IOS or Android
    • IoT / OT / SBC – Raspberry PI, Odroid, Beaglebone, etc…
  • Global availability with a local experience
  • Provides a Zero Trust for any technology, anywhere
  • No open footprint that can publicly be snooped or hacked
  • Nano-Segmentation – per individual technology security
  • Built-in controls to limit access to authorized resources
    • Automatic per-application access segmentation
    • Policy-based configuration
  • User experience consistent on-premise or off
  • Support for internal or 3rd party users
  • Can integrate into applications or apps

MPLS Replacement

2

MPLS networks are expensive, static and just can’t support today’s mobile and virtual application delivery and server technologies. Acreto SASE+Plus offers many advantages over traditional MPLS and even other SD-WAN technologies.

Benefits include:
  • Dedicated isolated SD-WAN per each Ecosystem / application
  • Connects all physical and virtual sites, clouds and networks around the world
  • On-demand turn-up in minutes
  • Integrated comprehensive security
  • Performance global backbone with Network Wormholing Technology
  • Automatically Converges with Acreto SDP functionality
  • Policy-based controls to limit access to authorized resources
  • End-to-end segmentation
  • No open footprint to be publicly snoop / access your networks
  • Simple to start, simple to run

Secure Clouds

3

Each cloud instance and Virtual Private Cloud (VPC) today requires a dedicated security infrastructure. Acreto SASE+Plus goes above and beyond standard SASE with Secure Application & Data Interconnect (SADI) that protects cloud instances individually or entire VPCs.

Benefits include:
  • Works with any cloud provider AWS, Azure, Google, etc…
  • Data Center grade security
  • Protects VPCs (Cloud Network) and individual instances
  • Integrates into Acreto SD-WAN & SDP
  • Supports Multiple connection methods:
    • TLS
    • IPSec
    • Direct Connect
    • Acreto vGateway
    • Acreto Reflection NAT
  • Nano-Segmentation isolates each instance or VPC individually
  • No open footprint to be publicly snooped or accessed
  • On-demand turn-up in minutes
  • Policy-based controls
  • Simple to start, simple to run

Secure SaaS

SASE+Plus provides controlled access, security and content controls for SaaS applications such as Office 365, Salesforce.com and other SaaS applications. SaaS security means that SASE+Plus can centrally control access to all applications, including 3rd party SaaS systems.

Benefits include:
  • Works with all major SaaS applications
  • Prevent SaaS login from Internet
  • Policy-based controls for access to SaaS
  • Integrates threat prevention to protect accessing devices
  • Device authentication, user authentication or both
  • Data Pattern controls with DLP Light
  • File Type controls
  • On-demand turn-up in minutes
  • Simple to start, simple to run

Secure IoT / OT

4

SASE+Plus protects non-standard, resource-challenged, purpose-built technologies such as IoT and Operationalized Technologies (OT). Nano-Segmentation containerizes each IoT / OT to not only protect the devices, but also dependent technologies. This also prevents third-party managed and controlled technologies from cross-contaminating other systems on your networks.

Benefits include:
  • Support for multiple IoT Types:
    • IoT / OT / SBC – Raspberry PI, Odroid, Beaglebone, etc…
    • Proprietary IoT / OT devices and technologies
  • Robust comprehensive security
  • Provides a Zero Trust security for all participants, regardless of location
  • Ecosystem containerizes and isolates associated
  • IoT / OT, applications and 3rd parties
  • Nano-segmentation controls and protects individual technologies
  • Isolate related remote IoT / OT, applications and 3rd parties
  • On-demand turn-up in minutes
  • Policy-based controls
  • No open footprint to be publicly snooped or accessed
  • Simple to start, simple to run

Third-Party Access

5

SASE+Plus provides effective security for third-parties. This includes: 1) third-party access to your applications and devices, 2) your access to third-party systems or 3) both. Each third-party and its access is isolated to an assigned Ecosystem. The third-party is now inherently limited to communicating with members of that Ecosystem only. Within the Ecosystem, access is limited to specific members by policy only.

This granular level of isolation and control is inherent and does not need to be planned, implemented or managed in any way.

Compliance & Audit

6

SASE+Plus has been designed from the ground up to address the complex and sometimes conflicting government and industry regulatory mandates. Each Ecosystem delivers a dedicated security infrastructure for each application, providing inherent isolation and separation of every aspect of the auditable system.

Dedicated security infrastructure provides the ultimate privacy, ensuring that there are no shared services for your sensitive application. This means the entire platform is isolated and private end-to-end, no matter where the various systems are located.

Dedicated Ecosystem elements include:
  • Dedicated enforcement engines
  • Data flows
  • Database
  • Logging
  • Policies
  • Directory service and authentication
  • vHSM Key store vault.

Every object, communication and request is assigned a Universally Unique Identifier (UUID) that never recycles. This means any login, change, request, object, policy, communication and enforcement is uniquely logged and forensically traceable.

Security Consolidation

7

Acreto SASE+Plus enables you to go from having to negotiate, buy, implement and manage dozens of security products to using a single, simple service. This approach also enhances security by eliminating the security gaps created by a hodgepodge of products.

The ROI is dramatic! Better security, lower cost without any product house-keeping is the ultimate consolidation.

Security Cost Reduction

8

By consolidating SASE and SADI services, SASE+Plus eliminates the need for security products for both access and Applications. This level of consolidation drives significant savings on security products, implementations, support, consultants and refresh cycles.

In some ROI case studies, initial savings exceeded 50% of the organization’s year-over-year security spend.

Today customers have to buy, implement and operationalize products from too many vendors, that need too many experts, and cost too much. And every few years they have to do it all over again. This approach to security is disjointed, too complex and ultimately ineffective. And this makes it obsolete. Its time for simple, affordable and sustainable security. Babak Pasdar,
Acreto - Founder, CEO/CTO

Interested in seeing Acreto SASE+Plus in action? Complete the below form and we will follow up soon.




    Interested in seeing Acreto SASE+Plus in action? Complete the below form and we will follow up soon.




      Interested in seeing Acreto SASE+Plus in action? Complete the below form and we will follow up soon.




        Interested in seeing Acreto SASE+Plus in action? Complete the below form and we will follow up soon.