Citadel

I have already described the “inside out” corporation here.

It imagines a world where:

  • Corporate networks no longer exist (so VPNs and other remote access solutions are no longer needed)
  • There is no concept of “in” or “outside” the corporate network.
  • All corporate services are accessible anywhere over the Internet securely.
  • Corporate network costs are reduced appropriately.

This idea was first evangelized by Google (who know a thing or two about infrastructure and security) and they called it “BeyondCorp”. This month Cloudflare introduced Cloudflare Access to do make the technology Google uses accessible to all enterprises. It’s like BeyondCorp, but you don’t have to be a Google employee to use it. The best part is that it is just $3/mo per seat.

As a CIO I love this concept of lowering enterprise costs, simplifying employee access to corporate services, and increasing security. It’s a win-win-win.

References

BeyondCorp: A new approach to enterprise security
No Firewalls, No Problem for Google
Fundamentals of the BeyondCorp ‘Zero-Trust’ Security Framework
Google leads the way out of the castle to the cloud
Bitly’s Oauth2 Proxy
Ditch your VPN, improve security and go to the cloud
Cloudflare Access