Netskope extends SASE localization capabilities

Netskope announced the availability of extended localization capabilities in its NewEdge secure access service edge (SASE) platform that are aimed at improving security and ensuring better experiences for global users.

With the rollout of Localization Zones to its NewEdge security private cloud, Netskope is offering a localized experience for 220 countries and territories. While using a cloud web proxy or a security service edge (SSE) solution can offer enterprise companies advantages such as reduced management overhead and enhanced security coverage, it can also pose challenges when trying to deliver a localized user experience.

For instance, end users tapping into a public cloud or using a centralized cloud service in a location without a data center, application or service would have to backhaul to a location that has one. If the user is in Egypt and the service has to use a data center in Italy, the content could be delivered in Italian. Behind the scenes, the mismatched IP addresses from the actual location to the location of the data center serving the content could raise security red flags.

“It makes for a very confusing experience. If you are on a public cloud, relying on a transit provider, there is no way to make sure that the internet doesn’t associate your IP address with the country of the data center and not where you actually are,” explains Joe DePalo, chief platform officer at Netskope.

IP addresses being misrepresented due to lack of localization also causes significant security concerns. For instance, if that same end user in Egypt logs in to a local service, the service would be expecting an Egyptian IP address. When instead it receives an Italian IP address, it could cause a security alert and result in a poor experience for the end user. According to DePalo, some Netskope competitors would turn off the security settings to enable a better localized user experience, but then that would expose the enterprise user and infrastructure to risks.   

“We can touch just about every IP address in the world in 30 milliseconds or less, and that allows for the negation of the security latency tax, and that allows for us to have control over that experience for our users,” DePalo says. “We focused on building a global infrastructure with more than 70 cities and more than 100 data centers, in which we are focused on that connectivity to make sure the user can get to us very quickly, that there’s compute in every location, that we can get to the cloud location very quickly.”



Source link