Enterprise applications such as Office 365 must be restricted to managed devices when accessed via thick clients. On unmanaged devices, DLP and access controls must be enforced, particularly for applications such as Office 365 and WorkDay, where employees require access at home and on the go. First-Gen CASBs use app signatures to identify app URLs, and cannot keep up with new apps or changes in apps. A Next-Gen CASB with AJAX-VM technology can automatically control any application, and dynamically keep up with changes in app URLs.
HIPAA compliance on BYOD is a difficult problem in healthcare environments. It is common for care providers to have multiple affiliations, making the deployment of MDM impossible. Furthermore, in many states care providers must be contractors by law, further complicating the use of BYOD and MDM. First-Gen CASBs partner with MDM solutions, rendering deployment impossible. A Next-Gen CASB includes agentless mobile security solutions that are easy to deploy.
Cloud-based file-sharing is a new path for the spread of malware. Files can be shared by external parties, or uploaded by users on unmanaged devices. In either case, Zero-Day Threat protection is required for stopping these threats before they spread into the enterprise. Next-Gen CASBs include such Advanced Threat Protection as an inherent part of the architecture.