Zero trust security model

Secure Access Service Edge (SASE) is compatible with Security Assertion Markup Language (SAML) and System for Cross-Domain Identity Management (SCIM), which reduces the exposure surface of your assets. SASE follows the principle of least privilege to manage access from devices to devices and from devices to applications. Internal network access is accelerated to provide the ultimate experience for users of branches and stores and users who work remotely or from different locations.

Centralized control of access security

SASE adopts a security model to deeply integrate security capabilities with Software Defined Wide Area Network (SD-WAN) appliances and provides a software as a service (SaaS) platform. SASE allows enterprises and their branches to obtain centralized security control on mobile work and network access.

Edge security

SASE provides security capabilities, such as secure Internet access and private data protection, based on nation-wide edge nodes. SASE provides the same security capabilities for the branches, stores, and headquarters of enterprises and for remote work and mobile work of the enterprises.

Cloud-native security architecture

SASE is deeply integrated with Alibaba Cloud infrastructures to support digital services and auto scaling for enterprises, provide comprehensive protection at security boundaries, and ensure the security capacity of enterprises.