ZTNA 1.0 Has an App Problem — It Can’t Secure Most of Them

It’s no top secret that the modern workforce relies on a plethora of purposes to conduct almost all of their get the job done. From movie conferencing to doc collaboration, instant messaging, and CRM, the list goes on and on. Regardless of wherever these apps are hosted, workers call for seamless, high-effectiveness entry to all of them.

Protection practitioners are tasked with retaining people, belongings, applications, and details harmless. The assure of Zero Have confidence in Network Entry (ZTNA) – providing accessibility for a person to an software instead than broad entry to a network – is supposed to support relieve the difficulties of accomplishing this. Even so, as I reviewed previously, the implementation of ZTNA 1. has fundamental flaws. In addition to individuals outlined earlier, ZTNA 1. fails to permit constant safety mainly because it only functions with a subset of programs that the business depends on.

ZTNA 1. Is Unable to Protected All Apps

The vision of consistent, fantastic-grained entry to all applications can not be obtained with ZTNA 1.. Which is because ZTNA 1. remedies don’t secure all apps. They don’t assist cloud-primarily based applications or other applications that use dynamic ports or server-initiated applications – like assistance aid desk apps that employ server-initiated connections to remote devices. ZTNA 1. alternatives don’t assist SaaS apps, either.

Present day, cloud-native apps are frequently comprised of numerous containers of microservices, usually working with dynamic IP addresses and port figures. Applying ZTNA 1. for this kind of software is a recipe for catastrophe. ZTNA 1. gets fully ineffective for these sorts of app constructs because it provides entry to a broad selection of IPs and ports, exposing the business to further danger and defeating the point of Zero Have faith in.

As additional and extra companies continue on their cloud journey and run their businesses on cloud-indigenous purposes, ZTNA 1. will turn into out of date.

ZTNA 2. Gives Dependable Stability for All Applications


Whilst legacy ZTNA alternatives only tackle a fraction of business applications, ZTNA 2. will safe all apps, no matter of the place they are hosted. It can be a fashionable cloud-indigenous microservices-based mostly application that doesn’t get limited by IPs and ports, a SaaS app, a conventional private app or legacy application.

ZTNA 2., sent by Prisma Obtain, offers exceptional safety even though providing uncompromised general performance and extraordinary user encounters, all from a single unified technique. It is goal-crafted on a certainly cloud-indigenous architecture to safe today’s electronic enterprises at cloud scale, giving uncompromised functionality backed by top SLAs that provide excellent person knowledge. Getting totally computer software-based and components neutral, vehicle-scaling lets Prisma Obtain to continue to keep up with altering hybrid workforce and evolving business calls for with out demanding manual interactions or procedures.

ZTNA 2. Is Zero Believe in with Zero Exceptions

Pursuing a legitimate Zero Have faith in posture is a journey, and giving constant protection and control across all applications, irrespective of in which they are hosted or accessed from, is an significant stage. That is why securing all applications used in the enterprise, together with contemporary apps and SaaS, is a main pillar of ZTNA 2..

To study a lot more about how you can defend your organization with ZTNA 2., be absolutely sure to observe our ZTNA 2. digital event, the place we discuss improvements and greatest tactics for securing the hybrid workforce.


Kumar Ramachandran serves as Senior Vice President of Products for Safe Accessibility Assistance Edge (SASE) merchandise at Palo Alto Networks. Kumar co-started CloudGenix in March 2013 and was its CEO, setting up the SD-WAN class. Prior to founding CloudGenix, Kumar held leadership roles in Merchandise Management and Marketing for the multi-billion greenback department routing and WAN optimization organizations at Cisco. Prior to Cisco, he managed applications and infrastructure for companies this sort of as Citibank and Providian Fiscal. Kumar retains an MBA from UC Berkeley Haas Faculty of Business and a Master’s in Pc Science from the University of Bombay.