You can see here that the ‘edge’ can mean many different things to different people. From my perspective, when I think about SASE, the logical place for the edge is the nearest high capacity network site, closest to the user. This is where we host our Provider Edge (PE) routers that act as the distribution layer of the network.
Putting the security enforcement at the network edge provides the ‘Goldilocks’ balance between cost and performance.
We could move closer to the users, but then the costs would rise exponentially due to the increased number of sites where we would need the SASE services; conversely we could retreat to the cloud, but then the performance can drop off alarmingly as users are forced through more network hops before having their traffic inspected.
Service providers are uniquely placed to meet this need. As owners and architects of the biggest public and private networks, we have access to thousands of Points of Presence (PoPs) around the world.
Importantly, these aren’t just Internet PoPs; they’re also serving private networks and mobile users simultaneously.
We have a deep understanding of how the traffic is moving across the network; what impact different changes will have and where we can achieve the optimal balance of performance and cost. This gives us the flexibility to choose the perfect locations for a SASE deployment that suits private networks, Internet users and mobile endpoints alike.
Users and their applications are much more dispersed than they used to be and the network is the supersonic plane that joins them together.
At the risk of stretching that analogy to breaking point, SASE represents the equivalent of the airport security, protecting the exchange of information.
The performance benefits of edge security are critical in delivering a non-intrusive user experience.
Imagine the frustration of someone who is told that their company is upgrading to a shiny new network and security solution, only to find they spend more time waiting for their IT than before.
They might also see a drop off in the quality of conference calls or video calls with no explanation. These are some of the side effects of a badly designed and integrated SASE platform – one that forces traffic to take an unnecessarily circuitous route, or enforces consecutive security inspections, one after the other.
The counter point to this is the experience they will benefit from if it’s well designed.
There is no more random enforcement of security policy and a greatly reduced risk of using cloud workloads. For remote workers, there is also a huge benefit as there’s no more hair-pinning of traffic to the data centre and back. This means a completely predictable experience, one that is secured to the same degree no matter where the user is, and the chance to enjoy the full range of benefits that cloud computing can bring to bear.
In summary, there’s a strong link between the effectiveness of a SASE solution and the access network. This link should be used to deliver the value and performance that today’s businesses need. SASE represents an unprecedented convergence of network and security that should be mirrored by the delivery model.
Learn more about SASE and what it can do for your business.
Around the globe, our network reaches 184 countries.
We provide the underlying transport network, the virtual overlay, and the platform to prioritise everything.