Secure Access Service Edge (SASE) is a new network and cybersecurity architecture combining SD-WAN, ZTNA, and threat prevention. It manages access to on-prem or cloud applications based on users’ roles, locations and schedules. It also provides multi-layer cybersecurity with IP filtering, DNS filtering, CountryBlock, AdBlock, and Intrusion Prevention System (IPS). In addition, it monitors networks and users, discovers new devices, and reports significant events as well as suspicious activities in real-time.
Today's SASE networks are not capable of making direct connections among sites. Instead, they carry all of the traffic to their overlay networks located in their datacenters or in a public cloud. Overlay networks are risky, because:
Thanks to the patented
OmniVPN® technology, Roqos' Distributed SASE directly connects multiple sites and remote users.
Roqos' Distributed SASE does not require any modifications on ISP or
upstream routers while inter-connecting every network type including the following:
Current SASE solutions are implemented in public clouds where all SASE customers' traffic are sent to.
However, due to governmental restrictions or security practices, some organizations may not send their data to public clouds.
Traditional SASE implementations may not be suitable for these organizations.
Roqos Distributed SASE can also be implemented in a private cloud or private datacenter, without sending
any end user or application data to a public network.
When implemented on-prem, Roqos' PrivateSASE™ provides the same features as the SASE in the Roqos cloud.
Only Roqos PrivateSASE™ is completely contained in a private cloud without any external communication.
Continuously discover, monitor, and manage all of your organization’s internal and external digital assets accessible from the internet. Gain insights into each device’s user, manufacturer, model number, operating system, connection times, location of connection, and the amount of data being sent and received — all within a single platform.
Automatically or manually scan your devices to identify security weaknesses—such as outdated software, misconfigurations, or missing patches—that could be exploited by attackers. Roqos provides the community version of the OpenVAS vulnerability scanner, which can run within your network while being remotely managed.
SASE implemented on directly inter-connected Roqos Core appliances instead of being completely dependent on the cloud.
The only complete on-prem SASE for organizations who cannot use public clouds.
Patented OmniVPN® technology allowing easy remote connections without any port forwarding or firewall modifications.
Detecting, blocking and reporting threats locally on Roqos Core appliances instead of the cloud.
Network access control based on roles, locations and schedules of both remote and local users with BYOD.
Create agentless micro-segments in your network. Quickly isolate devices to stop lateral movement of malware.
Copyright © 2014- - Roqos, Inc.
All Rights Reserved.
