What is Zero Trust
Platform
- Security, Authorization & Access Controls
  Provides CASB, Malware Defense and DLP Across All Users, Devices & Resources
  - Secure Access Service Edge
    The most advanced SASE and Zero Trust platform that allows users to work from anywhere with fast and secure connections to all applications
  - Adaptive Access Policies
    Provides Continuous Conditional Access to Apps, Data & Services
  - Criteria-Based Access Policies
    Provides Role-Based Access to Sensitive Apps & Data
  - ChatGPT Risk Module
    Monitors and Secures User ChatGPT Conversations
  - Malware Defense
    Prevents Ransomware & Device Infections
  - Data Loss Prevention
    Ensures Sensitive Information is not Lost
  - RBI and Browser Isolation
    Provides Contractors, 3rd Parties & BYOD Secure Access to Resources
  - Device Posture Checks
    Including Anti-malware, Firewall & Disk Encryption for Compliance
  - SSL Decryption
    Ensures Policies & Protection Apply to Encrypted Content
  - Secure Mobile Users
    Automatically & Transparently Secure All Traffic From Devices In & Out of the Office
  - Outbound Firewall Protection
    Extends Beyond the Physical Network Perimeter
  - DNS Security
    Quickly Secures BYOD Networks with Simple Configuration
- Application & Data Discovery
  Clearly Understand What Needs Protection
  - CASB
    Provides In-App Controls for Granular Access Decisions
  - Built-in Resource Catalog
    Enables Classification of Protected Apps and Services
  - Asset & Device Catalog
    Ensures Devices are Healthy, Compliant & Secure
  - Resource Labeling by Type & Security Objective
    Enables Risk Assessments and Understanding Business Impact of Sensitive Resources
  - Automatic Resource Discovery & Classification
    Reduces Overhead on Security Teams and Identifies Shadow IT
- Federated Identity Provider Integration
  Eliminates Unauthorized Users and Provides Role-Based Access Policies
  - SSO Identity Providers
    Integrates with Identity Providers Including Azure AD, Okta, Ping, SAML, OIDC
  - Step-Up Authentication
    Ensures the Right Level of Identity Confidence When Accessing Sensitive Resources
  - Group-Based Policies
    Leverage Okta, Azure AD and SAML Providers to Simplify Creation & Management of Security Policies
  - SSO for Legacy Apps
    Ensures Modern Authentication is Performed Even When Apps Do Not Support It
  - Supports Multiple Concurrent Identity Providers
    Authenticate Users Across Multiple Domains
- Alerting, Auditing, Logging & Reporting
  Provides In-Depth Detailed Visibility For Security Teams Across All Users, Devices & Transactions
  - Detailed Logging and Reporting
    Provides Visibility for Every Resource Transaction
  - Risk & Threat Reports
    List Infected Devices & High Risk Users
  - Digital Experience Management
    Provides Insights Into End-user Experience While Leveraging Business-critical SaaS Applications
  - Next-Gen Incident Dashboard
    Monitor and Instantly Address Security Threats
  - ChatGPT Risk Module
    Controlled Use of ChatGPT With Security and Monitoring
  - SIEM Integration
    Ensures Logs Are Copied to External Databases
  - Splunk Enterprise Security Add-On
    Automatically Populate Your Splunk Dashboards With Valuable Data
  - Integrates with Your Security Stack
    Including ICAP, Proxy Chaining and Log Forwarding
- Cloud Security & Connectivity
  Easily Protect Apps & Data Across SaaS, Cloud & Datacenters
  - iboss Zero Trust SD-WAN
    Streamline Connectivity & Security with iboss Zero Trust SD-WAN
  - Azure Cloud Security Gateways
    Extend the Security Edge Natively, Ensuring Robust Protection While Reducing Backhauling Costs
  - iboss ZTNA VPN Co-Pilot
    Provides a Transparent and Seamless Transition From VPN to ZTNA
  - Connect Organization Owned Devices
    Provides Access & Ensures Compliance Checks
  - Connect SaaS Apps
    Including O365 & Teams to Offload Overloaded On-Prem Proxies
  - Connect Cloud Providers
    Including AWS & Azure to Protect Multi-Cloud Resources
  - Connect On-Prem Resources
    Within Datacenters with Drop-In Proxy Replacements Eliminating High Renewal Costs
  - Terminal Server Protection
    With Unique Policies & Logging for Each User
  - IPsec & GRE Tunnels
    Provides Branch Office Local Internet Breakouts to Cloud Security
  - Private On-Prem Gateways
    Extends the Security Service Edge into the Datacenter to Protect Local Resources
  - Offload MPLS
    MPLS & SD-WAN Become More Efficient with Cloud Security
  - Dedicated Cloud IPs
    Enable Resource Anchoring to Ensure Proper Authorization & Third-Party Integration
Industry
- Mitie Switches to iboss For Fast and Secure Connections
  Mitie, a Global Provider of Smart Spaces, successfully migrates 8,500 devices from Zscaler to iboss in under 3 weeks.
  View Case study
- Business
  - Private Access VPN Replacement
    Replace VPN with Zero Trust Network Access allowing users to connect to private applications from anywhere
  - Cloud-Based Branch Office Web Security
    Eliminate data backhaul to on-prem appliances from remote offices
  - Microsoft 365 Features & Integration
    Native Microsoft integrations including Office 365, Microsoft Cloud App Security CASB and Azure
  - Stream Cloud Logs to Any External SIEM
    Gain visibility into web activity by streaming real-time log events directly from iboss cloud to your existing logging database or SIEM
  - Ensure GDPR Compliance
    The iboss cloud allows admin configurable zones to ensure cloud security is applied while meeting regulatory requirements
- Healthcare
  - For Healthcare
    Fast and Secure Connectivity from Anywhere, Designed for Healthcare
  - Secure Access Service Edge
    The most advanced SASE and Zero Trust platform that allows users to work from anywhere with fast and secure connections to all cloud applications
  - Private Access VPN Replacement
    Replace VPN with Zero Trust Network Access allowing users to connect to private applications from anywhere
  - Microsoft 365 Features & Integration
    Native Microsoft integrations including Office 365, Microsoft Cloud App Security CASB and Azure
  - Stream Cloud Logs to External SIEM
    Gain visibility into web activity by streaming real-time log events directly from iboss cloud to your existing logging database or SIEM
  - Integrates with your existing security stack
    Easily integrate iboss cloud with your existing workflows using a 100% open API
  - Terminal Server Protection in the Cloud
    User based policies and reporting for Windows Terminal Servers
  - Make MPLS and SD-WAN More Efficient with Cloud Security
    Send internet traffic directly to the cloud from branch offices to alleviate this load from private site-to-site connections
  - Data Loss Prevention
    Secure sensitive data with data loss prevention
- Finance
  - For Finance
    Fast and Secure Connectivity from Anywhere, Designed for Financial Institutions
  - Secure Access Service Edge
    The most advanced SASE and Zero Trust platform that allows users to work from anywhere with fast and secure connections to all cloud applications
  - Private Access VPN Replacement
    Replace VPN with Zero Trust Network Access allowing users to connect to private applications from anywhere
  - Microsoft 365 Features & Integration
    Native Microsoft integrations including Office 365, Microsoft Cloud App Security CASB and Azure
  - Stream Cloud Logs to External SIEM
    Gain visibility into web activity by streaming real-time log events directly from iboss cloud to your existing logging database or SIEM
  - Integrates with your existing security stack
    Easily integrate iboss cloud with your existing workflows using a 100% open API
  - Terminal Server Protection in the Cloud
    User based policies and reporting for Windows Terminal Servers
  - Make MPLS and SD-WAN More Efficient with Cloud Security
    Send internet traffic directly to the cloud from branch offices to alleviate this load from private site-to-site connections
  - Data Loss Prevention
    Secure sensitive data with data loss prevention
- Education
  - Student Risk Module Identifies Threats
    Safeguard Student Risk to monitor signs of cheating, suicide, drug use, bullying, violence, and mass shootings, to protect students & schools
  - Web Filtering for CIPA Compliance
    Streamline web filtering and CIPA compliance for students whether on campus or at home
  - Granular Student Web Activity Reports
    Generate detailed web activity history reports for any student which includes on-campus at home Internet use
  - YouTube and Social Media Controls
    Safe access to Google, YouTube and social media including Safe Search enforcement
  - Automatic Safe Search Enforcement
    Enforce Safe Search across search engines including Google, Bing, Yahoo and YouTube
  - Create Teacher and Student Based Policies
    Flexible filtering polices for teachers vs. students across any device on or off network
  - Cloud Web Security for One to One Initiatives
    Easily take home devices in the cloud to ensure CIPA compliance at all times
  - Ensure Fast Connections During State Testing
    Achieve seamless and uninterrupted state testing
  - iboss Classroom Management
    Visually monitor the activities of all of your students, from any location
- Government
  - For Government
    Fast and Secure Connectivity from Anywhere, Designed for Government
  - Secure Access Service Edge
    The most advanced SASE and Zero Trust platform that allows users to work from anywhere with fast and secure connections to all cloud applications
  - Complete Data Isolation & Extensible Platform for Government Entities
    The best choice for government entities for fast and secure connections for users from anywhere with a SASE platform that completely isolates network data traffic
  - Private Access VPN Replacement
    Replace VPN with Zero Trust Network Access allowing users to connect to private applications from anywhere
  - Microsoft 365 Features & Integration
    Native Microsoft integrations including Office 365, Microsoft Cloud App Security CASB and Azure
  - Stream Cloud Logs to External SIEM
    Gain visibility into web activity by streaming real-time log events directly from iboss cloud to your existing logging database or SIEM
  - Integrates with your existing security stack
    Easily integrate iboss cloud with your existing workflows using a 100% open API
  - Terminal Server Protection in the Cloud
    User based policies and reporting for Windows Terminal Servers
  - Data Loss Prevention
    Secure sensitive data with data loss prevention
Use Cases
- Replacement Use Cases
- Replace VPN with ZTNA
- Replace Proxy with SSE
- Replace VDI with Browser Isolation
Resources
- Award Winning Cloud Security Platform
  The iboss Zero Trust Secure Access Service Edge is consistently recognized as an industry leader in cloud security. Our patented containerized cloud architecture ensures secure, fast and reliable connectivity to cloud applications from any device, from any location.
  View Awards & Recognition
- Cloud Data Centers
  View Global Cloud Points of Presence that deliver the iboss Zero Trust SASE
- Cloud Status
  View real time status of the global Zero Trust Security Service Edge
- News
  See iboss in the latest news
- Blog
  Latest insights on Zero Trust Security Topics
- Events
  Join us for upcoming events and webinars
- FAQ
  Get answers to frequently asked questions
- Solution Briefs
  Detailed solution briefs covering iboss Zero Trust Security Use Cases
- Reviews
  Recognized by industry experts as the leading Zero Trust Security Platform
- Case Studies
  Learn how the iboss platform has been leveraged by leading organizations around the world
- Cloud Compliance
  The iboss global cloud fabric meets industry standards and certifications, including SOC1, SOC2 and ISO compliance
- Patents
  The iboss platform is protected by over 250 issued and pending patents
- Demo Videos
  View videos and demos of the iboss Zero Trust Platform
- Awards
  The most award winning Zero Trust Security Service Edge
- Careers
  Join the iboss team
Partners
- iboss Partners
  Partnering with iboss for Success
- Technology Alliances
  The iboss Cloud Platform extends capabilities with leading Technology Alliances Partners
- iboss MSP
  Scale your MSP offering by leveraging iboss to secure Internet access in the cloud
Get Demo
Get Pricing

Miercom iboss Zero Trust Secure Access Service Edge Certified Secure Test Report

Miercom Solution Brief

Download this Solution Brief Download PDF

Overview

Miercom was engaged by iboss to independently assess its Zero Trust Security Service Edge solution against the latest threats by examining protective features, refined controls, and user experience. When choosing a security solution, the iboss Zero Trust Secure Access Service Edge platform is a viable answer to typical and atypical network threats. Traditional security products protect against malicious actors crossing the network perimeter, blocking anything that puts access into the wrong hands. But now, with more users accessing their networks remotely, this border might as well have dissolved – leaving networks at serious risk.

Office networks need a way to protect users, on-site and remote when this perimeter extends to the cloud. Threat intelligence should be applicable from any location, at any time, and from a wide variety of engines, to provide a robust and granular way to deliver network security.

The iboss Zero Trust Secure Access Service Edge offers the flexible, scalable, and reliable security that enterprises should have when the perimeter is not obvious. Using its cloud security service that includes malware engines and a large number of threat and reputation feeds, the iboss platform provides comprehensive malware, compliance, and DLP protection. No appliances are needed; this cloud-based solution provides Software as a Service (SaaS) controls for cloud security and compliance regulation of today’s multi-cloud environment. This platform is fully integrable with third-party clouds, such as Microsoft Azure, by leveraging its unique architecture, which uses containerized cloud gateways to extend its capabilities from iboss’s global cloud backbone to other cloud edges to provide fast and thorough protection for a high-quality user experience.

Unlike other security solutions, the iboss Zero Trust Secure Access Service Edge can scan in-transit data within the cloud before reaching the user or device. Its rich feature set successfully prevents complex malware, infections, and data loss to save time and cost for IT personnel and data breach management. This subscription-based service requires no hardware upgrades or additional licensing to let networks reap the latest and greatest benefits with less overhead. Most importantly, the Zero Trust platform automatically scales to serve any user’s bandwidth and capacity demands, from any location.

Key Finding

100% protection against advanced evasive techniques, AETs, advanced persistent threats, backdoor malware, remote access trojans (RATs), and particularly ransomware – a costly malware affecting networks today.

Key Finding

99% average malware security efficacy, 26% higher than the industry average tested with Miercom to date.

KEY TAKEAWAYS

Consolidates functionality of VPN, Proxies and VDI into single service stack to improve security, performance, and end user experience

99% average malware security efficacy, 26% higher than the industry average tested with Miercom to date

CLOUD IS THE FUTURE

Cloud technology is the lifeblood of modern technological progress and a trendsetter for the next generation in the modern tech industry. During the early stages of the COVID-19 pandemic, businesses around the world began implementing the work-from-home model and various digital technologies into their operations.

Another unintended consequence of this new remote working norm was the proliferation of cloud models. And, as organizations began to adopt cloud models at a faster rate, the models themselves began to evolve at a faster rate as well. As a result, cloud technology has grown significantly in recent years. The iboss Zero Trust Secure Access Service Edge platform provides elastic security for distributed workforces without needing network security appliances. No matter how much bandwidth or cloud capacity is used, appliances are not required – iboss has 100+ points of presence around the world to provide coverage and security capabilities for any location.

Malware Efficacy

The malware detection capabilities of the SUT were assessed in this section of the testing. Testing focused on the protection against the following threat categories listed below. The Miercom malware server simulates a hacker’s attack server which hosts thousands of malware samples that characterize the breadth of coverage provided by the iboss Advanced Malware Defense engines. Samples from the Miercom malware server are used in industry-wide studies of malware detection for network security devices. Common malware types are botnets and Remote Access Trojans (RATs).

An emphasis is placed on active threats, advanced evasion techniques and advanced persistent threats which are more complex and challenging categories for security solutions to identify. Detection results reveal individual approaches to malware detection, as well as its granularity. The SUT was an intermediary between untrusted and trusted zones of the simulated network. A simulated attack from the untrusted zone consisted of an attempted download of a malicious file. A successful block was logged when the simulated victim client cannot download the malware sample.

iboss Zero Trust Secure Access Service Edge prevented 100% of Backdoor, TOR, RAT, Malicious Docs, Polymorphic Zero Day, Legacy, AET, APT, and Botnet malware samples. It had nearly perfect protection against both active and modified threats. The average iboss malware protection was 99% – 26% higher than the average industry malware prevention product or service.

Zero Trust Analysis

iboss is the only cloud security vendor that meets every Tenet and network requirement set by the NIST 800-207 Zero Trust Architecture to protect your users anywhere.

The iboss Zero Trust Secure Access Service Edge (SSE) consolidates functionality of VPN, Proxies and Virtual Desktop Infrastructure (VDI) into a single service stack to improve security, performance, and end user experience.

iboss Zero Trust Secure Access Service Edge (SSE) consolidates technology for a better user experience and substantially lower costs. It includes: Zero Trust Network Access (ZTNA), Cloud Access Security Broker (CASB), malware defense, compliance policies, Data Loss Prevention (DLP), Browser Isolation, and logging for every resource request. It also replaces legacy proxies via cloud security to protect all workers, local or remote. Its optional on-site gateways that can be deployed to the data center offer local protection, and fast migration capabilities, to secure the network while reducing the high-cost renewals seen with traditional on-premise topologies. Other functionality includes:

ZTNA replaces VPN, providing background security to users connected to private applications and data
Browser Isolation removes the need for Virtual Desktop Infrastructure (VDI), isolating application and data access via the cloud to eliminate the need for infrastructure or data center space
Automatically prevents infected devices from damaging resources, without requiring manual intervention, by cutting resource access as soon as a device becomes infected
Reduces risks through analysis of applications, data, and services to uncover shadow IT, unsanctioned applications and risky cloud services

The iboss Zero Trust SASE inspects all content for malware, DLP, CASB, Compliance, Policies, and Logging. In addition to the iboss threat intelligence, the iboss platform leverages threat intel from other sources such as Verizon threat intel and applies that to every transaction.

Miercom Report iboss Zero Trust SASE DR230227G 27March2023 -PUBLIC

About Miercom

Miercom has published hundreds of network product analyzes in leading trade periodicals and other publications. Miercom’s reputation as the leading, independent product test center is undisputed.

Private test services available from Miercom include competitive product analyzes, as well as individual product evaluations. Miercom features comprehensive certification and test programs, including Certified Interoperable™, Certified Reliable™, Certified Secure™, and Certified Green™. Products may also be evaluated under the Performance Verified™ program, the industry’s most thorough and trusted assessment of product usability and performance.

About iboss

iboss is a cloud security company that enables organizations to reduce cyber risk by delivering a Zero Trust Security Service Edge platform designed to protect resources and users in the modern distributed world. Applications, data, and services have moved to the cloud and are located everywhere, while users needing access to those resources are working from anywhere.

The iboss platform replaces legacy VPN, Proxies, and VDI with a consolidated service that improves security, increases the end-user experience, consolidates technology, and substantially reduces costs. Built on a containerized cloud architecture, iboss delivers security capabilities such as SWG, malware defense, Browser Isolation, CASB, and Data Loss Prevention to protect all resources via the cloud instantaneously and at scale. The iboss platform includes ZTNA to replace legacy VPN, Security Service Edge to replace legacy Proxies, and Browser Isolation to replace legacy VDI. This shifts the focus from protecting buildings to protecting people and resources wherever they are located. Leveraging a purpose-built cloud architecture backed by 230+ issued and pending patents and more than 100 points of presence globally, iboss processes over 150 billion transactions daily, blocking 4 billion threats per day. More than 4,000 global enterprises trust the iboss platform to support their modern workforces, including a large number of Fortune 50 companies. iboss was named one of the Top 25 Cybersecurity Companies by The Software Report, one of the 25 highest-rated Private Cloud Computing Companies to work for by Battery Ventures, and CRN’s top 20 Coolest Cloud Security Companies. To learn more, visit www.iboss.com.

Download this Solution Brief Download PDF