Overview

CoIP Access Platform is a strict implementation of the SASE model, in which security enforcement is pushed as close as possible to the application edge – ideally delivered through a software agent running on the endpoint operating system (agentless models are available for endpoints which require alternate onboarding models).

CoIP Access Platform enables users to be authenticated through standard identity providers, while endpoints and software processes are identified through fingerprinting and metadata. The agent then enforces policies that are stored on a centralized policy server (the zCenter orchestrator), applying security filtering on all traffic into and out of the server as defined by authorized policies. Applying security filtering at the endpoint eliminates the need for administrators to find ways to route traffic through fixed network security appliances, which is increasingly difficult to do in today’s complex hybrid and mobile environments – not to mention being inefficient in terms of application latency.

CoIP Access Platform supports the use of whitelist policy models that enforce default block actions. In this flow, all communication between protected servers is identified and authorized before each connection is made. This dramatically reduces the attack surface, while providing the administrator with a single pane of glass control to visualize and manage the security of all applications and endpoints.