Gartner: SASE tops Gartner list of 6 trends impacting Infrastructure & Operations over next 12 to 18 months
At its IT Infrastructure, Operations & Cloud Strategies Conference this week, Gartner identified six trends anticipated to have a significant impact on infrastructure and operations (I&O) over the next 12 to 18 months. Secure Access Service Edge (SASE) topped the list with Sustainable technology coming in second and Wireless Value Innovation (see below) in third place.
SASE is a single-vendor product that is sold as an integrative service which enables digital transformation. This trend connects and secures users, devices, and locations as they work to access applications from anywhere. Gartner forecasts that total worldwide end-user spending on SASE will reach $9.2 billion in 2023, a 39% increase from 2022. Gartner coined SASE as a technology framework for the convergence of network access and security in cloud-native environments. Earlier this year, Gartner released its first Market Guide for Single-Vendor SASE, revealing to I&O leaders that interest in the framework has exploded since its introduction in 2019 – and particularly toward single-vendor solutions.
Gartner VP Analyst Jeffrey Hewitt attributed the fast adoption of SASE to “the need to secure the access of devices and elements at the edge,” as well as hybrid work and a “relentless shift to cloud computing.” Hewitt noted the primary benefits of the framework are that it allows users to securely connect to applications and improves the efficiency of management. “Hybrid work and the relentless shift to cloud computing has accelerated SASE adoption,” said Hewitt. “SASE allows users to connect to applications in a secure fashion and improves the efficiency of management. I&O teams implementing SASE should prioritize single-vendor solutions (1.) and an integrated approach.”
Note 1. Single-vendor SASE means the selected service provider owns and delivers all the essential SASE components—software-defined WAN (SD-WAN), secure web gateway (SWG), cloud access security broker (CASB), network firewalling, and zero trust network access (ZTNA)—using a cloud-centric architecture, according to Gartner, which created the term SASE. The service is meant to address shortcomings of legacy methods of securing access to enterprise resources.
Source: Lanner
“Leaders are going to be looking at this and saying, we want to implement this,” Hewitt told SDxCentral. “They’re going to be assessing and determining what providers can offer.” I&O teams implementing SASE should prioritize single-vendor solutions, Hewitt added.
Hewitt noted SASE is still an “immature” market and technology framework. “It’s not something that you can just run out and have a large list of vendors – at this point – that you could select from,” he said. While many vendors still can only supply components of SASE, Gartner recognizes nine that offer complete solutions with both networking and Secure Service Edge (SSE) capabilities – Cato Networks, Cisco, Citrix, Forcepoint, Fortinet, Netskope, Palo Alto Networks, Versa Networks, and VMware.
The biggest benefits of a single-vendor solution are improved security posture, administrative simplicity with fewer consoles to manage and troubleshoot, and traffic efficiency due to single-pass encryption and optimal routing decisions instead of needing to integrate between two pieces, Analyst Andrew Lerner told SDxCentral in an earlier interview. Lerner recommended I&O leaders look for single-vendor SASE offerings that provide single-pass scanning, a single unified console, and data lakes covering all functions to improve user experience and staff efficacy.
By 2025, Gartner predicts 65% of enterprises will have consolidated individual SASE components into one or two explicitly partnered SASE vendors, up from 15% in 2021.
………………………………………………………………………………………………………………………………………………………………………………………………………………………….
Regarding Wireless Value Innovation, Gartner wrote: I&O can leverage multiple wireless technologies to extend business disruption opportunities beyond connectivity. Overlaps between various technologies including Wi-Fi, 5G, Bluetooth and high frequency (HF) facilitates connectivity solutions and creates innovation opportunities.
Hewitt said, “Wireless value innovation creates a scalable return on wireless investment and makes networks a strategic innovation platform. However, there is significant complexity at play and several new skills that are required to achieve this innovation, such as wireless integration capabilities and wireless tracking implementation experience.”
At its recent IT Symposium/Xpo 2022 Gartner included wireless among in its 10 top strategic technology trends for 2023. In that report, Gartner stated that no single wireless technology will dominate, but enterprises will use a variety of them to support a range of environments, including Wi-Fi in the office, services for mobile devices, low-power protocols, and even radio connectivity, Gartner stated. Gartner predicts that by 2025, 60% of enterprises will be using five or more wireless technologies simultaneously.
“We’re going to see a spectrum of solutions in the enterprise—that includes 4G, 5G, LTE, WIFI 5, 6, 7—all of which will create new data enterprises can use in analytics, and low-power systems will harvest energy directly from the network,” Gartner stated.
………………………………………………………………………………………………………………………………………………………………………………………………………………………….
Gartner’s top six trends impacting I&O in 2023:
Trend No. 1: Secure Access Service Edge (SASE)
Trend No. 2: Sustainable Technology
Trend No. 3: Platform Engineering
Trend No. 4: Wireless Value Innovation
Trend No. 5: Industry Cloud Platforms
Trend No. 6: Heated Skills Competition
………………………………………………………………………………………………………………………………………………………………………………………………………………………….
References:
https://www.sdxcentral.com/articles/news/sase-tops-gartners-io-trends-for-2023/2022/12/
Secure Access Service Edge – SASE Appliances Enable the Most Agile Edge Security
Dell’Oro: Secure Access Service Edge (SASE) market to hit $13B by 2026; Gartner forecasts $14.7B by 2025; Omdia bullish on security
MEF survey reveals top SD-WAN and SASE challenges
New Findings in Aryaka’s 2022 State of the WAN Report: Cloud Adoption, Hybrid Workplaces, Convergence of Network and Security with SASE
Shift from SDN to SD-WANs to SASE Explained; Network Virtualization’s important role
Enterprises Deploy SD-WAN but Integrated Security Needed
MEF New Standards for SD-WAN Services; SASE Work Program
2 thoughts on “Gartner: SASE tops Gartner list of 6 trends impacting Infrastructure & Operations over next 12 to 18 months”
Comments are closed.
From SDxCentral:
Analysts expect that Secure access service edge (SASE) total worldwide end-user spending will reach $9.2 billion in 2023, marking a 39% increase from 2022.
Gartner, who coined the acronym, also announced its single-vendor SASE leaders. The firm’s definition specifies that a complete SASE offering combines network edge capabilities like SD-WAN, and a set of cloud-centric security service edge (SSE) capabilities, including secure web access gateway (SWG), cloud access security broker (CASB), firewall-as-a-service (FWaaS), and zero-trust network access (ZTNA).
While many vendors still can only supply components of SASE, Gartner recognized nine that offer complete solutions with both networking and SSE capabilities – Cato Networks, Cisco, Citrix, Forcepoint, Fortinet, Netskope, Palo Alto Networks, Versa Networks, and VMware.
Executives from these companies gave SDxCentral their predictions for what 2023 has in store for the SASE market and technologies:
Shlomo Kramer, CEO, Cato Networks
“Just as COVID caused a massive acceleration in digital transformation projects, the recession will accelerate security consolidation. Numerous studies indicate that enterprises maintain dozens of security tools. And with so many security tools, controls are fragmented resulting in reduced visibility; operational overhead increases with the need for extra personnel and skills to master the various tools; and gaps between tools are created leaving the cracks through which attackers can infiltrate. Most companies (75%) expect to reduce the number of security vendors they use, replacing them with one, converged security platform.
Due to recessionary factors, IT staff will be pressured more than ever to do more with less, accelerating the move toward ‘as-a-service’ models. Numerous reports indicate that this recession will be unusual, not marked by the unemployment typical of a recession. But if layoffs are not part of the recession-coping toolbox, organizations will need to find other ways to reduce costs. Adoption of as-a-service models enables IT teams to tap expertise and tools that otherwise would be difficult to onboard.”
Jim Fulton, VP of Product, Forcepoint
“Organizations will further optimize their networking and security for the merging hybrid workforce, and SASE will continue its move into the mainstream as the architecture of choice for those initiatives.
The distinction between single-vendor SASE solutions (SD-WAN and SSE from the same vendor) versus separate SD-WAN and SSE providers will become more prominent as organizations look for ways to simplify their operations during an economic downturn. We will see organizations continue to consolidate vendors and demand platforms that are geared toward reducing the operational burden on security and networking teams, especially during a rocky economy.
Replacing VPNs with ZTNA will accelerate as organizations look to reduce costs and boost control over access to business resources. The role of data security in SASE will continue to grow as organizations realize that it’s not enough to protect how users get to the web, cloud, and private apps. Keeping control of what they do with data after they get there is just as important.”
Nirav Shah, VP of Products, Fortinet
“As the SASE market matures, CIOs will increasingly stop looking at SASE in a silo and examine it as part of their entire infrastructure. We don’t see a cloud-only world in the future, likewise we don’t see an on-premises-only world. SASE is an important cloud-delivered architecture for securing remote access, but it’s important to look at the reality of how most enterprises are building hybrid networks to meet their business needs. That means building a SASE architecture – what is essentially the convergence of cloud-delivered networking and security technologies – with products that are able to seamlessly integrate with each other and with converged on-premises solutions. This ensures enterprises preserve their existing on-premises investments (including SD-WAN investments), and prevents having to completely re-architect everything you already have deployed.
Thinking that convergence only needs to be in the cloud or convergence only needs to be on-premises when you have a hybrid network is not the right way to think – you need both. Many organizations today struggle with complexity because they have taken a piecemeal approach, using disparate tools from multiple vendors to support their security and connectivity needs at headquarters, branch offices, and remote workforce. In 2023, we’ll see more and more CIOs prioritizing consolidation by choosing solutions that can seamlessly integrate across both cloud and on-prem to ensure consistent security and a consistent user experience no matter where users or applications are distributed. We see this same trend manifesting in how CIOs are evaluating ZTNA solutions.”
Naveen Palavalli, VP of Product GTM Strategy, Netskope
“2022 was a challenging year for many organizations, but many are anticipating that 2023 will see continued economic headwinds. As a result, organizations will be looking especially close at how SASE can enable them to continue growing in an optimized, efficient manner. SASE features a number of consolidation and cost-savings benefits, and these will likely feature more heavily in business cases presented to the CIO and executive decision makers, in addition to traditional SASE value drivers like superior user experience or comprehensive security.
Another trend we will see more of in 2023 is the increased adoption of single-vendor SASE solutions by larger organizations. Until recently, these organizations looked primarily at dual-vendor SASE solutions based upon mature, trusted, cloud security platforms and established SD- WAN offerings. However, as complete, robust single-vendor solutions emerge that match or exceed the functionality of their dual-vendor counterparts, these will increase in popularity and market acceptance over the course of the year.
Finally, in 2023, organizations will look to apply some of the evolutionary principles introduced by ZTNA – a fundamental part of SASE – and apply them to the LAN. ZTNA provided remote workers with faster, more secure access to private applications.”
Kumar Ramachandran, SVP Products – Network Security, Palo Alto Networks
“With the recent emergence of multiple single-vendor SASE offerings, these solutions will become preferred over multi-vendor solutions (a.k.a. mix-and-match SASE). This will be driven by increased awareness of the shortcomings of mix- and-match SASE and new capabilities coming from more advanced single-vendor solutions.
Since its introduction earlier this year, ZTNA 2.0 has been gaining traction amongst security-minded early adopters. We expect ZTNA 2.0 to go mainstream in 2023.
The convergence of networking and security solutions, combined with AI and ML, will enable IT teams to predict and resolve issues with applications, networks, and security posture before they cause business disruptions. These cutting-edge capabilities will drive increased productivity and enable IT organizations to go from a reactive to a proactive posture.”
Kelly Ahuja, CEO, Versa Networks
“While the market was initially driven by remote user access to cloud workloads, SASE has emerged as the technology to protect and connect across the entire enterprise footprint. Enterprises are seeking extensible solutions as opposed to point products or technologies that they must integrate themselves. In 2023, SASE solutions that protect enterprise resources while delivering the optimal user/device-to-app or app-to-app experience, simplify policy definition, and add lifecycle management will emerge and establish themselves as the way of future.
SASE has quickly evolved from a set of discrete technologies or functions to a future state blueprint for integrating security and networking. Early adopter enterprises have started their journey to this future state and are charting the course to nirvana. Lessons learned from these early adopters will drive the strategy of the late majority. Their choice of a platform approach versus a portfolio approach will be driven by cost, agility, and operational flexibility. The market opportunity is bigger than it has ever been.”
Karl Brown, Senior Director, VMware
“Enterprise lines of business and operational technology teams are developing new applications or modernizing legacy applications to meet their business objectives. These new applications will collect and process volumes of ephemeral data from a large number and wide array of devices in near real-time. This volume of data and requirements for low latency will mean backhauling data to a cloud or traditional data center is not economically or technically feasible. Thus, requirements for SD-WAN and SASE will expand to encompass several factors.
Connectivity to the edge: Much like connectivity to the cloud, applications at the edge will require a low-latency, secure, and resilient network infrastructure. Further, many new intelligent endpoints will require 5G or 4G LTE LAN connectivity for enhanced mobility, coverage, performance, and reliability.
Compute at the edge: Applications at the edge will require compute capabilities. Deploying dedicated servers is not feasible in many locations because they add to the operational burden while posing security risks. Instead, enterprises should look for SD-WAN and SASE solutions that can host edge applications.
Intelligence about the edge: An understanding of application performance at the edge requires AI-assisted tools given the large volume of endpoints and the increased number of workloads. Therefore AIOps-based functionality is a requirement for SD-WAN and SASE management to function optimally.”
Citrix responded to SDxCentral saying they will be less focused on SASE moving forward, but “rather SSE which is more applicable to their portfolio.” Cisco did not respond to request for comment before publication.
https://www.sdxcentral.com/articles/interview/top-sase-execs-make-2023-predictions/2023/01/
Security Service Edge vs. SASE: What Is the Difference?
Secure Access Service Edge (SASE) is a category of networking solutions defined by Gartner in 2019, which combines traditional network security functions with wide area networking (WAN) capabilities. The goal of SASE is to provide secure and reliable connectivity for users and devices, regardless of their location or the type of network they are connected to.
Gartner defines SASE as a cloud-delivered, network security as a service platform that provides secure network connectivity and network security functions in a unified offering, delivered through a common infrastructure and management. SASE combines network security functions, such as zero trust networking, firewalls, and intrusion prevention systems (IPS), with cloud-based networking services like SD-WAN (software-defined wide area networking) and internet connectivity.
……………………………………………………………………..
Secure Services Edge (SSE) is a set of integrated, cloud-delivered secure services that use identities and policies to establish secure connections between authenticated users and business resources. First introduced by Gartner in 2021, SSE is a security category that will secure connectivity in the future of hybrid environments and remote work.
As more employees work outside corporate boundaries, SaaS applications become the norm, and applications move to the public cloud, organizations cannot continue to backhaul user traffic to corporate networks. Many IT organizations are replacing their existing network security appliances, such as firewalls, VPN gateway appliances, and web gateways, with cloud-based options that can better protect data, provide a better user experience, and reduce costs.
SSE platforms provide cloud services that extend secure connectivity to user locations, without connecting users to corporate networks, exposing IT infrastructure to the public internet, or requiring complex network segmentation. Instead, SSE allows IT to provide secure access from anywhere to on-premise applications, secure access to the internet, and fast access to the cloud and SaaS applications.
………………………………………………………………………………………..
Security Service Edge vs. SASE: What Is the Difference?
The main difference between Secure Access Service Edge (SASE) and Security Service Edge (SSE) is the focus of the solutions. SASE combines traditional network security functions with wide area networking (WAN) capabilities, while SSE focuses specifically on security functions.
SASE solutions are designed to provide secure and reliable connectivity for users and devices, regardless of their location or the type of network they are connected to. This can include traditional networking functions like VPNs and SD-WAN (software-defined wide area networking), as well as security functions like firewalls, intrusion prevention systems (IPS), and other controls. SASE solutions are often used by organizations with remote and hybrid workforces to ensure secure access to corporate resources and protect against cyber threats.
https://wire19.com/security-service-edge-vs-sase-difference/