Google’s implementation of the zero-trust model, BeyondCorp builds upon a decade of experience at Google to enable secure work from virtually any location without the need for a traditional VPN. Now, Google Cloud launched its second BeyondCorp zero-trust security product today with additional enterprise capabilities and a partner ecosystem that includes VMware, Citrix, CrowdStrike, and Tanium.
A new version of enterprise security
BeyondCorp allows for single sign-on, access control policies, access proxy, and user- and device-based authentication and authorization. Google Cloud Security VP/GM Sunil Potti published a blog post on the new BeyondCorp product. He said,
“Google is no stranger to zero trust—we’ve been on this journey for over a decade with our own implementation of BeyondCorp, a technology suite we use internally to protect Google’s applications, data, and users. BeyondCorp Enterprise brings this modern, proven technology to organizations so they can get started on their own zero trust journey.”
BeyondCorp Enterprise delivers three key benefits to customers and partners including a scalable, reliable zero trust platform in a secure, agentless architecture, continuous and real-time end-to-end protection, open and extensible solution to support a wide variety of complementary solutions.
In April 2020, Google Cloud announced its first commercial product based on the zero-trust approach to network security, BeyondCorp Remote Access. The cloud-based service lets employees access internal web apps from most devices and from any location without a traditional remote-access virtual private network (VPN).
BeyondCorp that began as an internal Google initiative to enable every employee to work from untrusted networks without the use of a VPN is now used by most Google users every day to provide user- and device-based authentication and authorization for Google’s core infrastructure and corporate resources.