Zscaler today announced the introduction of several new zero trust network access (ZTNA) capabilities, including enhanced detection of lateral movement and new functionality for blocking compromised users from exploiting a vulnerability.

Figure 1. Zscaler Adds New Zero Trust Network Access Capabilities

The updates are being introduced for Zscaler Private Access, which secures access to a company’s private applications. The product leverages Zscaler’s Zero Trust Exchange platform, which combines a cloud-based secure web gateway with cloud-delivered ZTNA.

With the updates, “security teams can get much higher fidelity signals to root out and contain malicious actors before they can do lasting system damage,” said Tony Paterra, senior vice president of emerging products at Zscaler, in an email to VentureBeat. [1]

Integrated deception:

Zscaler is the first Security Service Edge (SSE) offering “capable of intercepting the most advanced adversaries and preventing lateral movement with built-in decoys and automated containment across third-party zero-trust exchange and security operations platforms.” said Paterra.

Deception as a capability in SSE is a “compelling solution to address the compromised user problem where an advanced attacker has stolen valid credentials or hijacked a legitimate system,” he said.

The built-in deception feature also helps reduce alert fatigue, as “high confidence” alerts are generated by the system’s decoys, Zscaler says. [2]

Private app protection:

According to Zscaler, an in-line inspection of private app traffic is a key feature in the solution. the addition of private app protection means that "we are now able to take that one step further and prevent a potentially compromised user from exploiting that vulnerability."

Zscaler has announced that it will provide advanced remote access for industrial IoT and OT applications, expanding beyond users and workloads.

True zero trust:

While zero trust has become a "buzzword" and has been misapplied by some vendors, true zero trust involves directly connecting users to applications without going over the network at all, according to Zscaler's founder and CEO.

In the way in which Zscaler's customers are protected from exploiting the remote code execution vulnerability, Chaudhry said.

The flaw is the "most extreme vulnerability" imaginable, but Zscaler customers have benefitted from keeping their applications hidden by the Zero Trust Exchange, according to Chaudhry.

"It's difficult to get rid of my systems, because they can't be discovered and seen from the internet," said one customer. "So, the quicker the market embraces zero trust, the more safer we will get." [3]

References:

1. https://venturebeat.com/2022/03/22/zscaler-adds-new-zero-trust-network-access-capabilities/
2. https://turbocartz.com/zscaler-adds-new-capabilities-for-zero-trust-network-access/
3. https://list23.com/764483-zscaler-has-added-new-network-access-capabilities-that-match-zero-trust/

Cite this article:

Sri Vasagi K (2022), Zscaler Adds New Zero Trust Network Access Capabilities, pp. 67