Eliminate Security-vs-Access Conflicts with a Zero Trust Approach to Web Browsing
The new remote working norm has increased the security attack vector for many enterprises, making improved protection against email phishing, zero data exploits, contaminated document downloads, HTML exploits and other threats a new business priority. As a result, many organizations are taking a hyper-vigilant security stance, making blocking, restricting and preventing web access more common. This is exacerbating already-existing tensions between IT security teams and business users, who are frustrated by the restrictions, which reduce their productivity in very real ways.
Existing solutions for securing users from web-borne threats -- NGFWs, secure web gateways (web filtering), and anti-virus/sandboxing software offer limited protection due to their signature-based approaches and the ability of advanced threats – like zero-day malware – to hide within encrypted web traffic. The solutions are unable to effectively scan traffic, identify the “bad stuff”, and keep it off endpoints and networks.
A new approach is needed, one that takes a different perspective on the problem. Rather than pursuing the losing proposition of accurately identifying the “bad” in all of the “good”, why not begin with the proposition that everything is bad (or risky) -- and then solve for enabling secure access from that starting point?
This is exactly what Remote Browser Isolation (RBI) does. It takes a “Zero Trust” approach and applies it to web, email, and general internet access. By moving web browsing and email activity into cloud-based virtual isolated containers located remote from endpoints (and networks), it eliminates the chance of malware sneaking by and compromising the business’s environment. Only safe web rendering content gets streamed to user endpoints.
A review in CSO magazine recently highlighted the Zero Trust Browsing approach of the Ericom Shield RBI service, noting its ability to integrate with existing tools like SWG proxies and firewalls (e.g. no replacement or refresh needed). It is a cost-effective, clientless cloud-delivered addition to any existing web-security environment which provides users with an excellent web-browsing experience that is indistinguishable from their standard, un-Shielded experience.
As the article says, “through their Shield platform, Ericom has developed a way to take the concept of Zero Trust and apply it to user interactions outside of an organization. This ensures that all of the bad stuff stays on the other side of your network fence.” So regardless of where users are located – in their home office, at the workplace, or someplace in-between - Ericom’s RBI service brings the assurance that 100% of web-based malware will be blocked from your devices. The power of RBI solutions to deliver this kind of result is one of the reasons why Gartner, in their “Innovation Insight for Browser Isolation” report, predicted extremely aggressive adoption of the technology over the next few years.
To learn more about RBI, and how it can eliminate tensions between security teams and business interests, check out my recent mini-webinar on the Zero Trust Approach to Web Browsing. And feel free to contact us for more information.