How does FortiSASE support Zero Trust Network Access (ZTNA) principles?

FortiSASE supports Zero Trust Network Access (ZTNA) principles primarily through the identification of attributes on the endpoint to perform security posture checks. The essence of Zero Trust is to never trust, always verify. This involves assessing various factors—including endpoint attributes—before granting access to applications or resources.

By verifying the security posture of the device attempting to connect, FortiSASE ensures that only devices that meet specific security standards can access sensitive information or systems. This encompasses evaluating aspects such as device compliance, the presence of up-to-date security software, and the overall health of the endpoint.

In contrast, while continuously auditing user credentials is important in maintaining security, it doesn't fully align with the ZTNA framework, which emphasizes verifying the device itself along with user credentials. Encrypting all user traffic is also a vital component of a secure connection but does not specifically target the principle of access control based on user and device verification. Lastly, while limiting access to authorized users is a strong security measure, it is rather a high-level goal of ZTNA rather than the method by which it operates.