How fit for purpose are VPNs for enterprise remote access?
- Published: Thursday, 02 April 2020 08:00
PortSys has highlighted security and capability gaps that it believes exist in the VPNs that many organizations around the world are now using for business continuity due to the COVID-19 pandemic.
In a recent article, Michael Oldham, CEO of PortSys, examines 'six key areas where VPNs fall short in securing the enterprise infrastructure':
- Bandwidth – architecture and security needs of the modern hybrid enterprise stretch far beyond the configuration capabilities of today's VPNs.
- Segmentation – VPNs don't offer the deep level of granular controls necessary to prevent unauthorized access to critical resources.
- Context – if organizations need to scale quickly, as with the current pandemic, the one-size-fits-all approach to VPN access doesn't take into account each end user's full context of access.
- Complexity – clients often must be installed on remote machines for VPNs, adding yet another layer of complexity to the infrastructure.
- Visibility – since VPNs use SSL-encrypted tunnels, the outside world can't see traffic going back and forth...but neither can internal enterprise security teams.
- Reporting – organizations can't audit and report on access with VPNs, so they don't know who had access to what resources, and how they used those resources.
Read the article at https://portsys.com/business-continuity/