An organization is implementing a Secure Access Service Edge (SASE) architecture to support remote workers. Which key capability does SASE provide that traditional VPNs lack?
SASE enforces access policies based on identity and context, aligning with zero trust, unlike traditional VPNs that grant broad network access.
Why this answer
SASE convergences network and security functions and includes identity-based access, allowing granular policy enforcement based on user identity, device posture, and context. Traditional VPNs typically provide network-layer access without identity-driven security policies. SD-WAN is a component of SASE, not a unique capability.
Web filtering is available separately. DLP is also available separately.