BeyondCorp: Beyond fortress security
Most companies today use some variation of the firewall or fortress model for perimeter security. This model assumes everything on the outside is dangerous and everything in the inside is safe and worked well when employees worked on desktop computers at the company HQ. Neal Mueller and Max Saltonstall offer an overview of Googles BeyondCorp, a new model for today's dispersed BYOD workforce.
| Talk Title | BeyondCorp: Beyond fortress security |
| Speakers | Neal Mueller (Google), Max Saltonstall (Google) |
| Conference | O’Reilly Security Conference |
| Conf Tag | Build better defenses |
| Location | New York, New York |
| Date | October 30-November 1, 2017 |
| URL | Talk Page |
| Slides | Talk Slides |
| Video | |
Almost every company today uses some variation of the firewall or “fortress” model to enforce perimeter security. This model assumes that everything on the outside is dangerous and everything in the inside is safe. It worked relatively well when most employees worked in facilities owned by the company and primarily did their work on desktop and laptop computers. Now, however, this model is outdated and ineffective. With mobile and cloud technologies transforming how companies work, the way they are secured has to change too. Companies must assume that their internal network is as vulnerable to danger as the public internet and build enterprise applications based on this assumption. Google’s BeyondCorp presents a new model for this new paradigm. It dispenses with the privileged corporate network, instead granting access based on device and user credentials regardless of physical location. The result is employees that can work from any network without needing a traditional VPN connection into the privileged network. Neal Mueller and Max Saltonstall explain how BeyondCorp accomplishes this new model and how it can best be applied by businesses.
