Cloudflare Announces Cloud-Native “Access” to Release Users from the Shackles of the Legacy Enterprise VPN
Cloudflare builds upon Google’s BeyondCorp initiative, creating a solution for everyone else
San Francisco, CA, January 17, 2018 — www.cloudflare.com, the leading Internet performance and security company, today announced Cloudflare Access, a solution that does away with slow, unwieldy, complex Virtual Private Networks (VPNs) and makes accessing internal enterprise applications fast and easy. With Access, companies ensure that only authorized employees can securely access internal applications, without the use of a VPN.
Companies typically use a VPN to allow employees access to internal applications that are not available on the public Internet, but VPNs slow down every request, are inconvenient on mobile, and require ongoing maintenance. The average enterprise hosts thousands of internal Internet applications across multiple cloud and on-premise locations, and employees need to access them while outside of the corporate office.
Google’s internal BeyondCorp initiative sought to fix this by allowing Google employees to work more securely from any location without the need for a VPN. Cloudflare has democratized the BeyondCorp model, creating a solution that works for anyone, anywhere, across all devices, and across thousands of applications. It acts as a single security management plane for internal enterprise applications wherever they are hosted without the need for a VPN, with increased security and dramatically improved speed.
“VPNs are slow, clunky, and frankly don’t make sense for an increasingly mobile workforce accessing increasingly cloudified apps,” said Matthew Prince, co-founder and CEO of Cloudflare. “Cloudflare Access gives centralized application access control for legacy or cloud apps without slowing down connections, regardless of where someone is working around the world.”
The benefits of Cloudflare Access include:
- No unauthorized access: Every request is authenticated to ensure that sensitive data is protected without sacrificing usability.
- Seamless app integration: It works for both legacy on-premise apps as well as modern cloudified apps.
- Faster productivity: Internal applications operate at the same speed whether an employee is at company HQ or traveling overseas to visit a customer.
- No hardware necessary: There is no expensive hardware or time consuming maintenance required.
- Easy set-up: Set-up takes just five to 10 minutes from start to finish.
- Detailed audit logs: All policy changes and attempted access to internal applications are audited and logs are easily searchable.
Access integrates with identity providers like Okta, Microsoft Active Directory, Google G Suite, IBM, and others.
“Thousands of organizations around the world rely on the Okta Identity Cloud to manage and secure their extended enterprise,” said Chuck Fontana, VP of Business Development. “Okta and Cloudflare’s integration will enable our joint customers to securely connect to both cloud and on-premises applications, with Okta providing user identity and Cloudflare providing application access to complete the authentication flow. Together, we will empower organizations to better manage and secure the vast volume of resources available as the proliferation of people, applications and devices continues.”
Access customers include 23andMe and Scrapbook.com:
"Cloudflare Access is helping 23andMe access our internal applications securely from any device at anytime without the need for VPN," said Arnold de Leon, SRE manager, 23andMe, Inc.
“Access helps us by providing authenticated access to our knowledge base and other internal tools that were previously limited to our corporate network. Our remote workers now have the same access to these tools as anyone in our offices, and all of our colleagues can use the same accounts that they already use for their other core services,” said Greg Bonham, Director of IT, Scrapbook.com. “Our technology team benefits greatly from the centralized account control and logging which allow us to see every login attempt. The best part is that new sites can be added in minutes, so we can extend this to more internal tools in the future.”
To learn more, please check out the resources below: