What is a CASB?

A Cloud Access Security Broker (CASB) is a policy enforcement point that secures data & apps in the cloud and on any device, anywhere.

Learn more: Glass Class - What Is a CASB? 


What is Zero Trust?

The zero trust framework arose in 2010 (with Forrester leading the charge) as a response to prior, inadequate approaches to security. Rather than relying entirely on a simplistic moat that cannot provide the needed protections, organizations leveraging zero trust frameworks deploy modern, intelligent security measures so they can granularly secure any and all corporate resources--wherever they reside and wherever they are accessed.


When will the Gartner CASB Magic Quadrant 2021 Become Available?

Gartner does not plan to release a CASB Magic Quadrant 2021 research document. The CASB markets features remain a critical element of securing organizations usage of cloud services, however it won't be covered in a discrete Magic Quadrant and Critical Capabilities. Instead, research will continue in this area in the Security Service Edge (SSE) Magic Quadrant.


What is SASE?

Secure Access Service Edge, or SASE (pronounced "sassy"), is an emerging cybersecurity concept that Gartner described in the August 2019 report The Future of Network Security in the Cloud.


In the SASE model, organizations can extend consistent security to all enterprise resources. From a single control point, security teams can configure policies that secure SaaS apps, control access to web destinations, identify shadow IT, and defend on-prem apps. Integrating SASE with SD-WAN also delivers consistent security across branch sites.


What is Data Loss Prevention (DLP)?

A: DLP refers to a number of capabilities which are designed to identify and protect sensitive data that needs to be shielded from unauthorized access and illegitimate usage. Modern DLP solutions must stop leakage across all interactions that may occur within the IT ecosystem, from the network, to the web, to the cloud, and beyond. 


What is the difference between security and management?

Security is preventing risky events from happening, management is cleaning up after high-risk events.


What is Shadow IT?

Cloud applications used by business users without IT oversight. Also known as unmanaged apps.


What are managed apps?

Cloud Applications that are managed by IT, e.g. Office 365.


What are the types of CASB?

There are three types of Cloud Access Security Broker (a) API-only CASB offer basic management (b) multi-mode first-gen CASB offer management & security (c) Next-Gen CASB deliver management, security & Zero-Day protection.

Learn more: 

Glass Class - The Evolution of CASBs


What is a forward proxy?

A proxy where traffic must be forwarded by the end-point. Such proxies require agents and configuration on client devices.


What is a reverse proxy?

A proxy where traffic is automatically routed, requiring no agent or configuration on the end-point.

Learn more: Glass Class - API vs. Proxy


What is AJAX-VM?

Acronym for “Adaptive Javascript and XML- Virtual Machine AJAX-VM virtualizes cloud apps on the fly so they can be proxied without agents. Reverse-proxy CASB are brittle without AJAX-VM and break frequently with app changes.


What are the types of CASB Architecture?

There are three types of CASB architecture: API-only, forward proxy, and reverse proxy. Some CASB are API-only, others API and forward proxy. Next-Gen CASBs offer all three with AJAX-VM.


What is CASB encryption?

Encryption/decryption of data prior to upload/download to a cloud application.


What is searchable encryption?

An encryption system that combines full encryption with a clear-text index to enable search and sort without compromising encryption strength.


What is tokenization?

Obfuscation by encoding each input string as a unique output string.


What is agentless MDM?

Mobile security for BYOD that does not require agents. Easy to deploy and has no access to personal data or apps, thereby preserving user privacy.