The Case for Intent-Based Segmentation with SD-WAN

2020-07-02 19:47

The mandate to implement new public and private cloud networks, extend WAN connectivity to branch offices, support new IoT and privately-owned end-user devices, and develop aggressive application advancement strategies can often conflict directly with the need to secure the entire expanding network.

Internal segmentation strategies-solutions that go well beyond simple VLANs-play a critical role in ensuring that agile connectivity strategies such as SD-WAN can be safely integrated into a traditional network.

It enables the instantaneous fine-tuning of access controls, enables segments to be dynamically established regardless of where a workflow originates, and allows for advanced threat mitigation by using business intent to drive network segmentation.

In a dynamic and evolving environment, pre-configured segmentation standards that allow implicit or static trust will inevitably expose critical resources to risk, especially in the event of a network compromise.

To effectively establish and maintain this level of trust, organizations should consider augmenting their intent-based network segmentation with a Zero-trust Network Access strategy.

News URL

http://feedproxy.google.com/~r/Securityweek/~3/OEWe-KbyEcw/case-intent-based-segmentation-sd-wan

#sdwan #WAN