Almost every company today uses some variation of the firewall or “fortress” model to enforce perimeter security. This model assumes that everything on the outside is dangerous and everything in the inside is safe. It worked relatively well when most employees worked in facilities owned by the company and primarily did their work on desktop and laptop computers.
Now, however, this model is outdated and ineffective. With mobile and cloud technologies transforming how companies work, the way they are secured has to change too. Companies must assume that their internal network is as vulnerable to danger as the public internet and build enterprise applications based on this assumption.
Google’s BeyondCorp presents a new model for this new paradigm. It dispenses with the privileged corporate network, instead granting access based on device and user credentials regardless of physical location. The result is employees that can work from any network without needing a traditional VPN connection into the privileged network. Neal Mueller and Max Saltonstall explain how BeyondCorp accomplishes this new model and how it can best be applied by businesses.
Neal Mueller is the product lead for Google Cloud Platform, where he focuses on security and BeyondCorp. Outside of Google, Neal is an adventurer. He has summitted Mount Everest unguided, sailed from Hawaii to San Francisco, swum the English Channel, and completed the first-ever row across the Arctic Ocean, for which he was awarded a Guinness World Record. Neal holds a BA from the University of Pennsylvania and an MBA from the University of Pennsylvania’s Wharton School, both with honors.
Max Saltonstall is technical director of Google Cloud for the office of the CTO
©2017, O'Reilly Media, Inc. • (800) 889-8969 or (707) 827-7019 • Monday-Friday 7:30am-5pm PT • All trademarks and registered trademarks appearing on oreilly.com are the property of their respective owners. • firstname.lastname@example.org