SASE converges the functions of network and security point solution into a unified, global cloud service. The key components of a SASE architecture include:
SASE cloud: A globally distributed cloud service that delivers the networking and security capabilities to all edges. The SASE cloud operates as a single entity and its internal structure is transparent to the end-users.
SASE points of presence (PoPs): A specific instance within the SASE cloud that hosts the resources needed to deliver the SASE capabilities including servers, network connectivity, and software. SASE PoPs are symmetrical, interchangeable, multi-tenant, and mostly stateless. They are built to serve any enterprise edge connected through them as an integral part of that particular enterprise network.
SASE edge: Designed to connect a specific edge to the SASE cloud. SASE clients include SD-WAN appliances for branches, IPSec-enabled firewalls and routers, and device agents for Windows, Mac, iOS, Android, and Linux.
SASE management: Configure all policies and view network and security analytics and real-time status, in an intuitive, single-pane-of-glass, cloud-based management console.