You rely on the network to deliver applications. But as IT scales in size, connectivity, and environments outside the network to public cloud, we cannot rely solely on the network to secure applications.
The answer is to decouple security segmentation from the network. This allows us to protect applications wherever they run – because they do not live exclusively on our networks anymore, and enforcement must go wherever they do.
This white paper:
- Explains the evolution of networks, SDN, and host-based "security segmentation"
- Describes core competencies and trade-offs of segmenting on each
- Builds a case for decoupling security from the network based on design logic and efficacy