|
|
|
|
|
|
by fortyfivan
3073 days ago
|
|
|
I'm with ScaleFT, thanks for the shoutout. We've been huge believers in BeyondCorp since the first paper was released, and have incorporated the concepts into our Web Access product - https://www.scaleft.com/product/web-access Similarly, apps are placed behind a reverse proxy, which performs authN via your company's IDP, then authZ against the policies associated with the resource. These can be basic RBAC or more device oriented decisions such as whether the client disk is encrypted. We also believe a SaaS model is the way to make BeyondCorp a reality for companies who aren't Google, but there's more to it than a proxy service. We've found the more challenging aspects of a complete system to be the policy engine and device bindings, and have spent the past couple years working to offer with our product. Glad to see CloudFlare talking about BeyondCorp, the more who are providing solutions in this space, the easier it will be for companies who are not Google to get there. |
|
|