Coming to me in the form of Sonicwall’s Cloud Secure Edge (at a monthly, per-user cost), I understand the basics of what they say it’s going to do, but I also have been doing this long enough to understand when someone’s using a lot of buzzwords and scare tactics to hype a much simpler concept that I feel I am not as much up on. I would welcome any and all comments from those of you with any experience in implementing/utilizing/understanding SSE. Thanks in advance!
It’s a hosted vpn.
Right…but is it somehow “more secure” than just a simple SSL VPN client? Granted, I have to put in a password, so anyone who compromises that password now can setup the same, so a password-less solution is inherently “more secure” in that regard…but aside from that…?
Don’t use sonic walls, and also I don’t have any configured, so I can’t help you with any specifics other than other vendors.
Just guessing, they might be doing some kind of network level exploit detection along with the VPN. My network team has that setup on our firewall (multi-zone, including VPN), and I’ve been called in on more than a few security calls triggered by network EDR. If they have people you can use in that kind of a scenario, it would probably be worth it (my CISO is always trying to get customers to buy into the service BEFORE we have to get on a call rather than after).
I appreciate the response. That makes sense, but I think I still have a lot of homework to do!
It’s probably IPsec, not ssl.
Enterprise grade firewalls should be cert, MFA or SAML. I wouldn’t expect a simple username/password in use today.
It’s not more or less secure than the same setup on an in-house firewall.