New platform uses a Zero Trust security model to provide an easy and reliable way for companies of all sizes to protect the devices, data, and applications they rely on
Cloudflare, Inc., the security, performance, and reliability company helping to build a better Internet, today released Cloudflare One, a comprehensive, cloud-based network-as-a-service solution for your workforce. As more businesses rely on the Internet to operate, Cloudflare One protects and accelerates the performance of devices, applications, and entire networks to keep workforces secure. Now businesses can protect their workforce in a flexible and scalable way, without compromising security as distributed teams work from multiple devices and personal networks.
“After decades of building legacy corporate networks, organizations are left with clunky systems designed to protect their now empty offices. The only way to secure today’s work-from-anywhere economy is to secure each individual employee, protecting their individual networks, devices, and access to business-critical applications,” said Matthew Prince, co-founder and CEO of Cloudflare. “With Cloudflare One, we’re giving organizations of any size the power to solve their security and networking needs seamlessly, no matter how their business needs shift.”
Companies have traditionally used a castle-and-moat approach to security, creating a barrier between the enterprise network and external threats. Now that applications have moved to the cloud, and more employees have moved outside of the office, that model is broken. Employees are frustrated with the speed and experience of VPNs, and organizations want an alternative to the expensive patchwork of legacy solutions required to secure and connect corporate offices to each other and the Internet. Today’s new landscape requires a Zero Trust approach, where organizations do not automatically trust any requests to corporate data or resources, and instead, verify every attempt to connect to corporate systems before allowing them access.
With the rapid shift to remote work caused by the pandemic, businesses of all sizes are looking to adopt a Zero Trust architecture. According to an October 2020 commissioned study conducted by Forrester Consulting:
- 76% of businesses today say their organization’s security approach is “antiquated” and that they need to shift to a Zero Trust framework.
- 82% of all organizations have already committed to migrating to a Zero Trust security architecture.
- 80% of security leaders said that their organizations accelerated cloud transformation efforts in 2020, but they were unprepared to manage such an overhaul.
Cloudflare secures and accelerates more than 25 million Internet properties using a global network that covers 200+ cities in more than 100 countries. Cloudflare One uses that same network scale to give businesses multiple on-ramps to the public Internet from offices to data centers, to employees in-the-field, and connects traffic to Cloudflare’s comprehensive Zero Trust solution. This unified solution enables fast and safe connections to workplace applications, allows teams to use an app without exposing it to the public Internet, makes personal devices safe for business use, and works in any environment with any cloud provider.
Cloudflare One provides a unified set of tools for a Zero Trust solution, giving organizations a one-stop-shop to do things like:
- Secure every connection: Remote employees can get the same protection they’d expect from a corporate firewall no matter where they are working from. With Cloudflare One, Cloudflare Access checks for identity across every workload and Cloudflare Gateway keeps users, devices, and data safe on the Internet.
- Protect against Zero-Day attacks: Today’s browsers are inherently vulnerable to zero-day attacks and other malicious threats on the Internet. Cloudflare’s remote browser isolation technology creates a gap between a user’s browser and endpoint, protecting devices and networks from exploits and attacks.
- Integrate with the security solutions you’re using: Cloudflare seamlessly connects with leading identity platforms like Okta, Onelogin, and Ping Identity, and endpoint protection platforms like CrowdStrike, VMware Carbon Black, Tanium, and SentinelOne to verify identity and assess device health before granting access to applications.
- Monitor and manage your network with a single pane of glass: With Cloudflare’s firewall features, businesses get a comprehensive view of all data flows globally. Now businesses have a bird’s eye view of what’s happening on their data centers, branch offices, clouds, and endpoints and then use that intelligence to mitigate intrusions and threats quickly across the entire network.
Read More: Increased role of security in adopting cloud platforms
According to Chase Cunningham, VP, Principal Analyst Serving Security & Risk Professionals at Forrester, in the report “The Forrester Wave™: Zero Trust eXtended Ecosystem Platform Providers, Q3 2020,” “As legacy technology becomes outdated and less effective, improved technical capabilities powering the future of work will dictate which providers will lead the pack. Vendors that can provide a secure remote workforce, Zero Trust mission completion, and easy-to-use technology position themselves to successfully deliver true Zero Trust to their customers.”
Cloudflare One Customers
“JetBlue Travel Products needed a way to give crew-members secure and simple access to internally-managed benefit apps,” said Vitaliy Faida, General Manager, Data/DevSecOps at JetBlue Travel Products. “Cloudflare gave us all that and more — a much more efficient way to connect business partners and crew-members to critical internal tools.”
“OneTrust relies on Cloudflare to maintain our network perimeter, so we can focus on delivering technology that helps our customers be more trusted,” said Blake Brannon, CTO of OneTrust. “With Cloudflare, we can easily build context-aware Zero Trust policies for secure access to our developer tools. Employees can connect to the tools they need so simply teams don’t even know Cloudflare is powering the backend. It just works.”
“Discord is where the world builds relationships. Cloudflare helps us deliver on that mission, connecting our internal engineering team to the tools they need,” said Mark Smith, Director of Infrastructure at Discord. “With Cloudflare, we can rest easy knowing every request to our critical apps is evaluated for identity and context — a true Zero Trust approach.”
“When you’re a fast-growing, security-focused company like Area 1, anything that slows development down is the enemy,” said Blake Darché, CSO at Area 1 Security. “With Cloudflare, we’ve found a simpler, more secure way to connect our employees to the tools they need to keep us growing — and the experience is lightning-fast.”
“We launched quickly in April 2020 to bring remote learning to children throughout the UK during the coronavirus pandemic,” said John Roberts, Technology Director at Oak National Academy. “Cloudflare Access made it fast and simple to authenticate a huge network of teachers and developers into our production sites and we set it up in literally less than an hour. Cloudflare’s WAF helped ensure the security and resilience of our public-facing website from day one.”
“With Cloudflare, we’ve been able to reduce our dependence on VPNs and IP allow-listing for development environments. Our developers and testers aren’t required to login from specific locations, and we’ve been able to deploy an SSO solution to simplify the login process,” said Alexandre Papadopoulos, Director of Cyber Security, INSEAD. “Access is easier to manage than VPNs and other remote access solutions, which has removed pressure from our IT teams. They can focus on internal projects instead of spending time managing remote access.”
Cloudflare One Partners
“In today’s work-from-anywhere business culture, the risk of compromise has substantially increased as employees and their devices are continuously surrounded by a hostile threat environment outside the office walls,” said Amol Kulkarni, Chief Product Officer at CrowdStrike. “Through our integration with Cloudflare, organizations can leverage the power of the CrowdStrike Falcon platform to accurately assess the security posture of any host for application access, delivering end-to-end Zero Trust protection across endpoints, workloads and applications to stop attacks in real-time.”
“The VMware Carbon Black Cloud consolidates multiple endpoint and workload security offerings into a single, cloud-native platform,” said Tom Corn, Senior Vice President, Security Business Unit, VMware. “Leveraging VMware Carbon Black Cloud, Cloudflare can help customers enable devices connecting to their cloud and Zero Trust networks are better secured and managed.”
“Ping Identity helps enterprises improve security and user experience across their digital footprint with their Intelligent Identity Platform,” said Baber Amin, CTO West of Ping Identity. “Cloudflare integrates with Ping Identity’s global authentication authority to provide a comprehensive identity and zero trust networking solution to teams working on the internet, and ensure that only the right people get the appropriate access to resources at the right time.”
Read More: Cloud Security – Three Common Mistakes CISOs Can Avoid
“Enterprises have come to terms with the notion of a disintegrating traditional perimeter. The distributed and dynamic perimeter of today requires a fundamentally new approach to security,” said Chuck Fontana, SVP Business & Corporate Development at SentinelOne. “In partnership with Cloudflare, our AI-powered cybersecurity platform offers modern enterprises a more robust zero trust security solution that spans the devices, the network, and the mission-critical applications enterprises rely on.”
“Zero trust security architectures started at the network level with segmentation and enforcement, but as corporate resources and data increasingly live on endpoints, a zero trust architecture must take both the endpoint and the network into consideration,” said Pete Constantine, Chief Product Officer at Tanium. “Knowing the identity of the endpoint, as well as knowing that it’s up-to-date, hardened against security threats and hasn’t been compromised, is paramount in ensuring secure access to an organization’s resources.”
“As enterprises make the move to cloud infrastructure and adopt zero trust security models, they need to visualize, manage, and enforce security policy across heterogenous hybrid networks,” said Satin Mirchandani, President and CEO of FireMon. “Through our partnership with Cloudflare, enterprises can embrace the performance and security benefits of Cloudflare One while ensuring consistent visibility and control across their entire network security estate.”