Office-level security work outside without a VPN?

As the number of remote work workers increased with the spread of Corona 19, Google began providing BeyondCorp Remote Access. Zero Trust is a system based on the next-generation security concept, which enables the internal and external security strength to be realized at low cost.

In the VPN client used for the existing remote work, if the connection was concentrated on the VPN server, there was a problem that it was difficult to cope with the increase in users for a short period of time. In addition, in a perimeter security model that clearly divides the inside and outside of a network such as a VPN or firewall, once an attacker is allowed to infiltrate the network, the damage spreads.

The next-generation concept that continues the traditional perimeter security model is Zero Trust. A zero-trust network is a concept in which the distinction between inside and outside is eliminated and every access is individually verified. Based on the concept of Zero Trust, Google has been working on a project called BeyondCorp since 2011 with the goal of allowing all employees to work over untrusted networks without using a VPN. Access Context Manager (Access Context) that enables the Cloud Identity to realize single sign-on, context aware access, which determines access based on user ID, connection terminal, IP address, etc. Manager), etc. were implemented in Google Cloud.

The product that combines these various functions implemented by BeyondScope is the BeyondScope remote access. This makes it possible to individually provide context-aware access-based authentication for web applications running on-premises in the cloud, eliminating the need to use existing VPN connections.

For example, hiring managers can only have access to a web-based document management system from a home PC only when they are running the latest version of the operating system, and the Timecard app can be set to require everyone access from any device.

Google says Beyondcorp Remote Access will provide the office-like user experience and productivity with the advanced security controls needed outside the office. Related information can be found here .