Google corp. revised the concept of corporate network and went fae away from the model of the network constraints defined boundaries (mostly virtual), opening it to work from the outside, and at the same time strengthening the safeguards within. This concept is called BeyondCorp, and it's main concept is that a corporate intranet as dangerous as the Internet, so it is necessary to apply significant precautions ...
How does it works?
Restriction of access is not only for some users, but for devices, too.
If worker has specific level of access, he can connect to the corporate network from any location, including the office, home, or cafe (if suddenly he got urgent work, or an idea). To limit the access level were used diffrent methods of authorization, authorization and encryption. It should be noted that in this model the model the protection of the corporate network at the entrance to its office no less strong than protection when connected to the same network of cafes. In particular, a reliable method of encryption of the communication channel is used.
"The model, which is limited by the walls of the building intranet (or individual office) works fine when all workers are in the building during working hours. However, today a large number of workers are using diffrent cloud servises, so there are new types of attacks on enterpise networks" said one of the project leaders Beyond COrp Ward Rory and journalist Betsy Beyer. [DOCUMENT]
Oh, yes. You are able to enter the intranet of the company only from the company device.
