Apr 21, 2020 21:30:00

Google provides 'Beyond Corp Remote Access' to support remote work, enabling zero trust security

In response to the increase in remote workers due to the spread of new coronavirus infection (COVID-19), Google has begun offering ' BeyondCorp Remote Access '. BeyondCorp Remote Access is a system based on the next-generation security concept called

Zero Trust , which allows you to secure security strength inside and outside the company at low cost.

Keep your teams working safely with BeyondCorp Remote Access | Google Cloud Blog
https://cloud.google.com/blog/products/identity-security/keep-your-teams-working-safely-with-beyondcorp-remote-access

Google rolls out BeyondCorp Remote Access for browser-based apps | ZDNet
https://www.zdnet.com/article/google-rolls-out-beyondcorp-remote-access-for-browser-based-apps/

VPNs that have been used for remote work have been difficult to handle an increase in the number of users in a short period of time because connections from clients are concentrated on the VPN server.In addition, it is a setting for users who do not have network knowledge. There was a problem that was complicated. Furthermore, in the boundary type security model that clearly separates the 'outside' and the 'inside' of the network, such as VPN and firewall , there was a problem that once the attacker was allowed to enter the network, the damage would spread. .

The next-generation concept that replaces the traditional perimeter security model is 'zero trust.' Zero Trust is a concept that abolishes the distinction between inside and outside the network and verifies all access individually. Based on the concept of zero trust, Google has a project called ' BeyondCorp ' since 2011 with the aim of 'making it possible for all employees to work through an' untrusted network 'without using a VPN'. We are proceeding with ' Cloud Identity, ' which realizes single sign-on, and ' Context-aware access ', which determines whether access is possible based on the user ID, connection source terminal, IP address, etc. ' Access Context Manager ' and so on have been implemented in Google Cloud.

' BeyondCorp Remote Access ' is a product that combines various functions such as Cloud Identity implemented by BeyondCorp . With BeyondCorp Remote Access, it will be possible to provide individual authentication based on context-aware access to web applications operating in the cloud or on-premises, eliminating the need to use a conventional VPN connection.

For example, 'Allow HR recruiters to access a web-based document management system on their home PC only when using the latest version of the OS' or 'Timecard applications can be accessed by anyone on any device.' It seems that you can set it so that you can do it.

BeyondCorp Remote Access said Google, 'BeyondCorp provides the same user experience and productivity as in the office, with the high level of security and control needed outside the office.'