How SMBs can make the shift away from legacy corporate VPN
The remote workforce is here to stay. Statistics show that this new way of working greatly benefits both employers and employees. But the reality is that most organizations weren’t ready to enable and support a mostly-remote work force when the forced quarantines went into effect. Businesses have done what they can to quickly pivot and survive, but many are finding that supporting remote workers using existing on-premise tools and solutions is far from ideal.
Enabling a distributed, remote workforce to be productive 24/7 requires systems, services, application programming interfaces, data, and processes to be accessible through multiple mechanisms anywhere, anytime, from any user device over the internet. While this approach has enabled organizations to maintain business continuity during the pandemic, it has also expanded the surface area for attackers to target. Since the onset of COVID-19, the FBI has seen a 300% spike in reported cybercrimes. Threats are becoming increasingly sophisticated and the architecture of traditional tools is inadequate to sufficiently protect businesses.
As more applications move up to the cloud, network-centric solutions like remote access VPNs are no longer effective in securing sensitive data. According to IDC, VPN was being used in 68% of major incidents involving remote access tools. Analysts anticipate that the risk will only continue to grow, with Gartner expecting that by 2025, laggard organizations will be their own worst enemy, with more than 85% of successful attacks against modern enterprise user endpoints exploiting configuration and user errors, rather than making use of advanced malware.
The issue is that remote access VPNs extend network access to each remote user, which broadens the attack surface and increases security risks. Additionally, a full VPN gateway appliance stack:
Zero Trust Network Access (ZTNA) is a security method that requires verification from anyone accessing resources on a given network. Trust is never implied inside or outside the network, and access is defined by granular policies. ZTNA is designed to give users secure seamless access to private applications without exposing apps to the internet or expanding the network’s attack surface.
While a corporate VPN is a network-centric solution that comes with several limitations, ZTNA is a cloud-centric solution that secures access to applications with a fundamentally different approach:
Unlike the appliance architecture, cloud-based ZTNA solutions can support and keep pace with digital business by:
These benefits, along with the reality that organizations must continue to rapidly evolve to support new technologies and meet ever-changing business, market and customer demands, mean adoption of ZTNA will continue to grow. Gartner predicts that by 2023, 60% of organizations will phase out most of their remote access virtual private networks in favor of ZTNA. And the analyst firm believes by 2022, 80% of new digital business applications opened up to ecosystem partners will be accessed through zero-trust network access (ZTNA).
Secure Private Access is a cloud service that uses a distributed architecture to provide fast and secure access to private applications running on-premises or in the public cloud. Organizations can easily and securely access business applications from any device, anywhere, anytime. The service provides access based on four key principles:
To learn more about ZTNA and Secure Private Access, visit our dedicated page.
The new Avast Cybersecurity Basics Training Quiz provides training on Data Security, Identity Management, and Social Media Security
How SMBs can effectively protect their networks from cyberthreats – without breaking their security budgets