* [Blog](https://www2.paloaltonetworks.com/blog)
* [Palo Alto Networks](https://www2.paloaltonetworks.com/blog/corporate/)
* [Secure the Cloud](https://www2.paloaltonetworks.com/blog/category/secure-the-cloud/)
* Secure Connectivity Is th...

# Secure Connectivity Is the Only Connectivity

[](https://www.facebook.com/sharer/sharer.php?u=https%3A%2F%2Fwww2.paloaltonetworks.com%2Fblog%2F2020%2F03%2Fcloud-connectivity%2F)  
[](https://twitter.com/share?text=Secure+Connectivity+Is+the+Only+Connectivity&url=https%3A%2F%2Fwww2.paloaltonetworks.com%2Fblog%2F2020%2F03%2Fcloud-connectivity%2F)  
[](https://www.linkedin.com/shareArticle?mini=true&url=https%3A%2F%2Fwww2.paloaltonetworks.com%2Fblog%2F2020%2F03%2Fcloud-connectivity%2F&title=Secure+Connectivity+Is+the+Only+Connectivity&summary=&source=)  
[](https://www.paloaltonetworks.com//www.reddit.com/submit?url=https://www2.paloaltonetworks.com/blog/2020/03/cloud-connectivity/&ts=markdown)  
\[\](mailto:?subject=Secure Connectivity Is the Only Connectivity)  
Link copied  
By [Evin Safdia](https://www.paloaltonetworks.com/blog/author/evin-safdia/?ts=markdown "Posts by Evin Safdia")  
Mar 27, 2020  
5 minutes  
[Secure the Cloud](https://www.paloaltonetworks.com/blog/category/secure-the-cloud/?ts=markdown)  
[Secure the Enterprise](https://www.paloaltonetworks.com/blog/category/secure-the-enterprise/?ts=markdown)  
[Use-Cases](https://www.paloaltonetworks.com/blog/sase/category/use-cases/?ts=markdown)  
[Proxy](https://www.paloaltonetworks.com/blog/tag/proxy/?ts=markdown)  
[SASE](https://www.paloaltonetworks.com/blog/tag/sase/?ts=markdown)  
[Secure access service edge (SASE)](https://www.paloaltonetworks.com/blog/tag/secure-access-service-edge/?ts=markdown)

The mobile workforce has been growing over the years, but recent events, like COVID-19, have led to a sudden increase in remote workers, with many companies not prepared or able to quickly adopt technologies to securely enable the transition.

For companies seeking to [securely connect and scale remote workforces](https://www.paloaltonetworks.com/blog/2020/03/cloud-securing-remote-workforces/) -- either temporarily or for the long haul -- one option to consider is a cloud-based service. A [Secure Access Service Edge](https://www.paloaltonetworks.com/cyberpedia/what-is-sase) (SASE) provides a fundamental solution for this need, as it combines networking services and security services delivered from a single cloud platform.

#### **Remote Working Evolves**

Years ago, working with technology and protecting users was relatively simple. Users commuted into an office where they used stationary desktop computers to access company resources via local area networks. As time went on, users were able to gain some mobility with laptops and occasionally connected to corporate resources with [virtual private networks (VPNs)](https://www.paloaltonetworks.com/cyberpedia/what-is-a-vpn).

Even before its recent rise, remote work was becoming more popular. The [*2019 State of Remote Work Report*](https://www.owllabs.com/state-of-remote-work/2019) revealed that 42% of remote workers plan to work remotely more frequently than they currently do in the next 5 years, and that more than half of on-site workers want to start working remotely. Not only are users becoming more mobile, they are using multiple devices, such as laptops, tablets and smartphones, in order to be productive. Additionally, applications have been moving out of the data center to the cloud, adding to the complexity.

#### **SASE: Providing Connectivity with Security**

Traditional VPN technologies can still be used to apply some level of security and access but are not ideal for the rapidly changing environment and increasing performance expectations of users. The need for direct to internet connectivity from anywhere on any device, securely, has led to the adoption of technologies like Software Defined Perimeter (SDP) and [Zero Trust Network Access](https://www.paloaltonetworks.com/cyberpedia/zero-trust-and-sase) (ZTNA). ZTNA is a fundamental component of a [SASE solution](https://www.paloaltonetworks.com/blog/2020/01/cloud-zero-trust-network-access/) to implement the "never trust, always verify" philosophy and authenticate access to the cloud, restrict access and minimize data loss. ZTNA provides users access to organizational resources located in public or private clouds while the company has complete inspection and security over the data being accessed. However, ZTNA products based on an SDP can lack content inspection capabilities needed for consistent protection.

Some vendors blur the lines between the two technologies, but you should ask a few questions before adopting a solution, especially if rapidly deploying to previously unmanaged or unknown devices:

* * **Does the solution allow for specific controls on what applications and protocols a user/group can access?** Traditional VPN brings users fully onto the network with no control of their lateral movement. Segmented application access is essential for security purposes.
  * **Can my users access SaaS, Private Cloud and Public Cloud applications securely from a point of presence (POP) relatively close to their physical location?** Modern users have high standards for user experience and bandwidth. As applications move out of the data center, applying security close to the user is essential to enable user productivity.
  * **Is it possible to inspect my traffic to ensure that malware prevention and data loss prevention (DLP) policies are applied?** Remote access creates an additional threat vector to organizational resources. If traffic is not inspected to apply [DLP](https://www.paloaltonetworks.com/enterprise-data-loss-prevention)and antimalware policies, the attack surface is significantly increased.
  * **Does the solution have functionality for unmanaged device access?** Users may require the ability to work using unmanaged devices, especially in critical situations. Allowing secure access to resources from unmanaged devices can reduce or eliminate shadow IT while enabling user productivity.
  * **Can my vendor handle peak bandwidth without disruption or outage? As we have seen with COVID-19 response, some vendors are unable to handle significant increases in usage as organizations onboard remote users. It is critical that your vendor can dynamically scale to handle these situations and prevent service disruption.**
  * **Does the solution provide the ability to connect to endpoints for troubleshooting or management needs?** Being able to connect to endpoints is extremely valuable for troubleshooting, management and support purposes to help you provide support for your users when they need you the most.
  * **How difficult is it to implement and transition from my hardware VPN solution?** Real world factors need to be considered when selecting a vendor. Ease of deployment, ease of management and time to value are key areas for any organization to evaluate. Ideally, SASE solutions should be manageable using as few administrative interfaces as possible and be quick to deploy based on existing policies.

#### **A True ZTNA Approach to Secure Connectivity**

By considering these questions, you can ensure you are adopting a true ZTNA approach that will enable you, when ready, to onboard a SASE vendor. [SASE](http://start.paloaltonetworks.com/10-tenets-SASE)is critical in enabling your users to work remotely with limited bandwidth disruptions and provides security while accessing the Internet, SaaS applications, cloud applications and private data center resources. As practitioners, we must enable our users to be productive while ensuring we take all the necessary security precautions. If a "Zero Trust" vendor isn't inspecting traffic, are they really providing secure access?

Learn more about [securing remote users without compromising connectivity](https://start.paloaltonetworks.com/replace-remote-access-vpn.html).

*This blog is part of a series explaining the modern realities of cloud security. Read the previous entry, "* [*Why Proxy-Based Firewalls Are Not Enough*](https://www.paloaltonetworks.com/blog/2020/03/cloud-proxy-based-firewalls/)*."*

*** ** * ** ***

## Related Blogs

### [Secure the Cloud](https://www.paloaltonetworks.com/blog/category/secure-the-cloud/?ts=markdown), [Secure the Enterprise](https://www.paloaltonetworks.com/blog/category/secure-the-enterprise/?ts=markdown)

[#### Why Most Zero Trust Network Access Solutions Are Too Trusting](https://www2.paloaltonetworks.com/blog/2020/07/zero-trust-network-access-solutions/)

### [Education](https://www.paloaltonetworks.com/blog/category/education/?ts=markdown), [Secure the Cloud](https://www.paloaltonetworks.com/blog/category/secure-the-cloud/?ts=markdown), [Secure the Enterprise](https://www.paloaltonetworks.com/blog/category/secure-the-enterprise/?ts=markdown)

[#### Online Learning: Security and Connectivity for Teachers and Students](https://www2.paloaltonetworks.com/blog/2020/06/network-online-learning/)

### [Secure the Cloud](https://www.paloaltonetworks.com/blog/category/secure-the-cloud/?ts=markdown), [Secure the Enterprise](https://www.paloaltonetworks.com/blog/category/secure-the-enterprise/?ts=markdown)

[#### Rethinking Zero Trust Network Access for a Zero Trust Strategy](https://www2.paloaltonetworks.com/blog/2020/06/network-zero-trust-strategy/)

### [News \& Events](https://www.paloaltonetworks.com/blog/sase/category/news-events/?ts=markdown), [Secure the Cloud](https://www.paloaltonetworks.com/blog/category/secure-the-cloud/?ts=markdown), [Secure the Enterprise](https://www.paloaltonetworks.com/blog/category/secure-the-enterprise/?ts=markdown)

[#### The Industry's Most Comprehensive SASE Just Got Better with CloudGenix](https://www2.paloaltonetworks.com/blog/2020/04/network-cloudgenix/)

### [Secure the Cloud](https://www.paloaltonetworks.com/blog/category/secure-the-cloud/?ts=markdown), [Secure the Enterprise](https://www.paloaltonetworks.com/blog/category/secure-the-enterprise/?ts=markdown), [Use-Cases](https://www.paloaltonetworks.com/blog/sase/category/use-cases/?ts=markdown)

[#### Working from Home During COVID-19: Secure Access for Remote Workers](https://www2.paloaltonetworks.com/blog/2020/04/network-secure-access/)

### [Secure the Cloud](https://www.paloaltonetworks.com/blog/category/secure-the-cloud/?ts=markdown)

[#### Data Security for the Future: DLP and Secure Access Service Edge](https://www2.paloaltonetworks.com/blog/2020/01/cloud-dlp/)

### Subscribe to the Blog!

Sign up to receive must-read articles, Playbooks of the Week, new feature announcements, and more.
![spinner](https://www2.paloaltonetworks.com/blog/wp-content/themes/panwblog2023/dist/images/ajax-loader.gif) Sign up  
Please enter a valid email.  
By submitting this form, you agree to our [Terms of Use](https://www.paloaltonetworks.com/legal-notices/terms-of-use?ts=markdown) and acknowledge our [Privacy Statement](https://www.paloaltonetworks.com/legal-notices/privacy?ts=markdown). Please look for a confirmation email from us. If you don't receive it in the next 10 minutes, please check your spam folder.  
This site is protected by reCAPTCHA and the Google [Privacy Policy](https://policies.google.com/privacy) and [Terms of Service](https://policies.google.com/terms) apply.  
{#footer} {#footer}

## Products and Services

* [AI-Powered Network Security Platform](https://www.paloaltonetworks.com/network-security?ts=markdown)

* [Secure AI by Design](https://www.paloaltonetworks.com/precision-ai-security/secure-ai-by-design?ts=markdown)

* [Prisma AIRS](https://www.paloaltonetworks.com/prisma/prisma-ai-runtime-security?ts=markdown)

* [AI Access Security](https://www.paloaltonetworks.com/sase/ai-access-security?ts=markdown)

* [Cloud Delivered Security Services](https://www.paloaltonetworks.com/network-security/security-subscriptions?ts=markdown)

* [Advanced Threat Prevention](https://www.paloaltonetworks.com/network-security/advanced-threat-prevention?ts=markdown)

* [Advanced URL Filtering](https://www.paloaltonetworks.com/network-security/advanced-url-filtering?ts=markdown)

* [Advanced WildFire](https://www.paloaltonetworks.com/network-security/advanced-wildfire?ts=markdown)

* [Advanced DNS Security](https://www.paloaltonetworks.com/network-security/advanced-dns-security?ts=markdown)

* [Enterprise Data Loss Prevention](https://www.paloaltonetworks.com/sase/enterprise-data-loss-prevention?ts=markdown)

* [Enterprise IoT Security](https://www.paloaltonetworks.com/network-security/enterprise-device-security?ts=markdown)

* [Medical IoT Security](https://www.paloaltonetworks.com/network-security/medical-device-security?ts=markdown)

* [Industrial OT Security](https://www.paloaltonetworks.com/network-security/medical-device-security?ts=markdown)

* [SaaS Security](https://www.paloaltonetworks.com/sase/saas-security?ts=markdown)

* [Next-Generation Firewalls](https://www.paloaltonetworks.com/network-security/next-generation-firewall?ts=markdown)

* [Hardware Firewalls](https://www.paloaltonetworks.com/network-security/hardware-firewall-innovations?ts=markdown)

* [Software Firewalls](https://www.paloaltonetworks.com/network-security/software-firewalls?ts=markdown)

* [Strata Cloud Manager](https://www.paloaltonetworks.com/network-security/strata-cloud-manager?ts=markdown)

* [SD-WAN for NGFW](https://www.paloaltonetworks.com/network-security/sd-wan-subscription?ts=markdown)

* [PAN-OS](https://www.paloaltonetworks.com/network-security/pan-os?ts=markdown)

* [Panorama](https://www.paloaltonetworks.com/network-security/panorama?ts=markdown)

* [Secure Access Service Edge](https://www.paloaltonetworks.com/sase?ts=markdown)

* [Prisma SASE](https://www.paloaltonetworks.com/sase?ts=markdown)

* [Application Acceleration](https://www.paloaltonetworks.com/sase/app-acceleration?ts=markdown)

* [Autonomous Digital Experience Management](https://www.paloaltonetworks.com/sase/adem?ts=markdown)

* [Enterprise DLP](https://www.paloaltonetworks.com/sase/enterprise-data-loss-prevention?ts=markdown)

* [Prisma Access](https://www.paloaltonetworks.com/sase/access?ts=markdown)

* [Prisma Browser](https://www.paloaltonetworks.com/sase/prisma-browser?ts=markdown)

* [Prisma SD-WAN](https://www.paloaltonetworks.com/sase/sd-wan?ts=markdown)

* [Remote Browser Isolation](https://www.paloaltonetworks.com/sase/remote-browser-isolation?ts=markdown)

* [SaaS Security](https://www.paloaltonetworks.com/sase/saas-security?ts=markdown)

* [AI-Driven Security Operations Platform](https://www.paloaltonetworks.com/cortex?ts=markdown)

* [Cloud Security](https://www.paloaltonetworks.com/cortex/cloud?ts=markdown)

* [Cortex Cloud](https://www.paloaltonetworks.com/cortex/cloud?ts=markdown)

* [Application Security](https://www.paloaltonetworks.com/cortex/cloud/application-security?ts=markdown)

* [Cloud Posture Security](https://www.paloaltonetworks.com/cortex/cloud/cloud-posture-security?ts=markdown)

* [Cloud Runtime Security](https://www.paloaltonetworks.com/cortex/cloud/runtime-security?ts=markdown)

* [Prisma Cloud](https://www.paloaltonetworks.com/prisma/cloud?ts=markdown)

* [AI-Driven SOC](https://www.paloaltonetworks.com/cortex?ts=markdown)

* [Cortex XSIAM](https://www.paloaltonetworks.com/cortex/cortex-xsiam?ts=markdown)

* [Cortex XDR](https://www.paloaltonetworks.com/cortex/cortex-xdr?ts=markdown)

* [Cortex XSOAR](https://www.paloaltonetworks.com/cortex/cortex-xsoar?ts=markdown)

* [Cortex Xpanse](https://www.paloaltonetworks.com/cortex/cortex-xpanse?ts=markdown)

* [Unit 42 Managed Detection \& Response](https://www.paloaltonetworks.com/cortex/managed-detection-and-response?ts=markdown)

* [Managed XSIAM](https://www.paloaltonetworks.com/cortex/managed-xsiam?ts=markdown)

* [Threat Intel and Incident Response Services](https://www.paloaltonetworks.com/unit42?ts=markdown)

* [Proactive Assessments](https://www.paloaltonetworks.com/unit42/assess?ts=markdown)

* [Incident Response](https://www.paloaltonetworks.com/unit42/respond?ts=markdown)

* [Transform Your Security Strategy](https://www.paloaltonetworks.com/unit42/transform?ts=markdown)

* [Discover Threat Intelligence](https://www.paloaltonetworks.com/unit42/threat-intelligence-partners?ts=markdown)

## Company

* [About Us](https://www.paloaltonetworks.com/about-us?ts=markdown)
* [Careers](https://jobs.paloaltonetworks.com/en/)
* [Contact Us](https://www.paloaltonetworks.com/company/contact-sales?ts=markdown)
* [Corporate Responsibility](https://www.paloaltonetworks.com/about-us/corporate-responsibility?ts=markdown)
* [Customers](https://www.paloaltonetworks.com/customers?ts=markdown)
* [Investor Relations](https://investors.paloaltonetworks.com/)
* [Location](https://www.paloaltonetworks.com/about-us/locations?ts=markdown)
* [Newsroom](https://www.paloaltonetworks.com/company/newsroom?ts=markdown)

## Popular Links

* [Blog](https://www.paloaltonetworks.com/blog/?ts=markdown)
* [Communities](https://www.paloaltonetworks.com/communities?ts=markdown)
* [Content Library](https://www.paloaltonetworks.com/resources?ts=markdown)
* [Cyberpedia](https://www.paloaltonetworks.com/cyberpedia?ts=markdown)
* [Event Center](https://events.paloaltonetworks.com/)
* [Manage Email Preferences](https://start.paloaltonetworks.com/preference-center)
* [Products A-Z](https://www.paloaltonetworks.com/products/products-a-z?ts=markdown)
* [Product Certifications](https://www.paloaltonetworks.com/legal-notices/trust-center/compliance?ts=markdown)
* [Report a Vulnerability](https://www.paloaltonetworks.com/security-disclosure?ts=markdown)
* [Sitemap](https://www.paloaltonetworks.com/sitemap?ts=markdown)
* [Tech Docs](https://docs.paloaltonetworks.com/)
* [Unit 42](https://unit42.paloaltonetworks.com/)
* [Do Not Sell or Share My Personal Information](https://panwedd.exterro.net/portal/dsar.htm?target=panwedd)
  ![PAN logo](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/pan-logo-dark.svg)
* [Privacy](https://www.paloaltonetworks.com/legal-notices/privacy?ts=markdown)
* [Trust Center](https://www.paloaltonetworks.com/legal-notices/trust-center?ts=markdown)
* [Terms of Use](https://www.paloaltonetworks.com/legal-notices/terms-of-use?ts=markdown)
* [Documents](https://www.paloaltonetworks.com/legal?ts=markdown)

Copyright © 2026 Palo Alto Networks. All Rights Reserved

* [![Youtube](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/social/youtube-black.svg)](https://www.youtube.com/user/paloaltonetworks)
* [![Podcast](https://www.paloaltonetworks.com/content/dam/pan/en_US/images/icons/podcast.svg)](https://www.paloaltonetworks.com/podcasts/threat-vector?ts=markdown)
* [![Facebook](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/social/facebook-black.svg)](https://www.facebook.com/PaloAltoNetworks/)
* [![LinkedIn](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/social/linkedin-black.svg)](https://www.linkedin.com/company/palo-alto-networks)
* [![Twitter](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/social/twitter-x-black.svg)](https://twitter.com/PaloAltoNtwks)
* EN  
  Select your language