Long-time WAN provider Aryaka has released a version of its Zero Trust WAN product that incorporates a new Secure Web Gateway and Firewall-as-a-Service as it works toward a SASE-enabled WAN offering.\nThe idea is to provide a much more updated version of WAN to enterprise customers\u2014where SD-WAN traditionally lived in a box in branch offices, the pandemic and the evolving SASE model prompted a more flexible rethink. Now, Aryaka\u2019s latest model is an entirely cloud-based offering, routing secure traffic to branch offices or remote employees while being able to employ robust security technologies via Aryaka\u2019s own cloud.\n\u201cIt\u2019s a great big black box,\u201d said IDC research director Chris Rodriguez. \u201cYou\u2019re going to abstract away all the traditional security stacks.\u201d\nSASE incorporates security into SD-WAN\nSASE, or secure access service edge, is a Gartner Research-coined term that\u2019s been around since 2019. It describes an SD-WAN offering with security features like identity management, policy enforcement, and device health monitoring built-in\u2014and one that can also be delivered via the cloud, rather than requiring an appliance. It\u2019s a popular idea among vendors, given its ability to scale readily based on usage.\nIt\u2019s become a widespread buzzword in the networking sector, with vendors using it to describe any kind of cloud-based, multiuse security product, even if it doesn\u2019t meet Gartner\u2019s fairly strict definition for true SASE.\n\u201cIt\u2019s been so hard for anyone to fulfill the full concept of SASE\u2014it\u2019s a lot!\u201d said Rodriguez. \u201cAryaka\u2019s taking more of an approach where they\u2019re trying to integrate best-of-breed.\u201d\nThe same is true for zero trust, which Aryaka uses to describe a wide range of its offerings, including the new Secure Web Gateway. According to Forrester Research, which first described the term, it means that systems should be architected in such a way as to grant the minimum amount of access to any entity or given piece of data at any given time.\nAccording to Rodrigue, Aryaka is handling some of the foundational security functionality and policy by itself, but leaving open the option for users to address more parts of the SASE equation\u2014like cloud access security broker technology, and intrusion prevention\u2014themselves.\nAryaka\u2019s Secure Web Gateway, the company said, is designed as a defense for both site-to-internet and user-to-internet traffic. The company highlights benefits like reduced operational complexity, easier patching and updating for security components, correlated viewing of different security systems during the same events, and lower overall TCO, thanks to the centralized management and tight integration between disparate parts of the security equation.\nIt\u2019s likely to appeal most heavily to companies that are large enough to have separate teams for networking and security, but not so large that their security and networking teams have inordinately complicated in-house technology, according to IDC\u2019s Rodriguez.\n\u201cI do think it\u2019s been traditionally a smaller enterprise\/midmarket [play,]\u201d he said. \u201cThis will help bridge those gaps [between security and networking.]\u201d Particularly large companies, by contrast, might have stricter requirements and more complex systems that couldn\u2019t be replaced on a turnkey basis by Aryaka\u2019s SASE offering.\nThe secure web gateway is available now as part of Aryaka\u2019s Zero Trust WAN offering, which is priced on a per-site or per-user basis.