Press Releases

Versa Transforms Branch and Campus Networks with Industry’s First Software-Defined LAN to Natively Provide Zero Trust and IoT Security

Versa Secure SD-LAN Combines Switching, Routing, Security and Network Services While Enabling Switches and Access Points to Become Zero Trust Enforcement Points
Santa Clara, Calif., – October 24, 2023

Versa Networks, the global leader in AI/ML-powered Unified Secure Access Service Edge (SASE) and Software-Defined WAN (SD-WAN), today announced Versa Secure SD-LAN – the industry’s first software-defined branch and campus Local Area Network (LAN) solution to deliver Zero Trust and IoT Security natively at the LAN Edge. This software-defined approach makes campus and branch networks more agile and integrated, and Zero Trust improves the security posture.

For years, enterprises have grappled with the limitations and vendor lock-in from traditional LAN solutions. Legacy LAN architectures create painful operational challenges and cannot meet the evolving business needs of a secure modern enterprise. These issues are driven by the need to stitch together a fragmented set of point products, rigid architectures that lack business flexibility, and disjointed box-by-box configuration and management that is onerous and error prone. In addition, product refresh cycles continually force upgrades and migrations that are expensive and time-consuming.

Traditional LAN architectures continue to use outdated perimeter-oriented security that implicitly trusts users and allows them to access all resources on the network. If a threat actor or a ransomware-infected device is able to initially authenticate, it can move laterally and compromise other devices on the network. This approach runs counter to today’s security best practices which apply Zero Trust and continuously authenticate users while limiting access to only necessary resources. The rise of IoT devices further expands this unsecured internal attack surface area.

What’s New?

Versa Secure SD-LAN brings a software-defined approach to the LAN to improve agility and security. The solution deploys Versa software on Ethernet switches and access points to deliver integrated switching, routing, security, and network services. Versa Secure SD-LAN can co-exist and interoperate with existing campus or branch LAN products from other vendors. Versa Secure SD-LAN extends Versa’s Unified SASE platform capabilities into the LAN Edge.

The solution provides user, device, and application awareness combined with a centralized policy repository to give enterprises full visibility and control across the branch or campus network, including OT and IoT devices. This approach enables every switch and access point to become a Zero Trust enforcement point that continually assesses the security posture of users, devices and the network to identify internal and external threats and stop the spread of potential attacks.

Available today, the solution includes:

  • Versa Secure SD-LAN software. Software-defined architecture for the campus and branch delivering integrated L4-7 security with the standards-based networking found in today’s switches. This sets the foundation for in-line least privilege access and adaptive micro-segmentation to limit lateral movement and reduce the risk of compromise, while delivering unprecedented agility and deployment flexibility for the LAN.
  • Certified appliances. Versa Secure SD-LAN runs directly on the following newly released certified bare metal appliances to provide the scale and capacity needed for today’s branch and campus:
    • CSG3300 and CSG3500 Appliances. Converges routing, SD-WAN, SD-LAN, and security into a single branch appliance to deliver simplified management and lower Total Cost of Ownership (TCO).
    • CSX4000 and CSX8000 Series. Ethernet switches that deliver line rate L2, L3, VXLAN, and L4-7 security including firewall, application identification, adaptive micro-segmentation, IoT fingerprinting, and inline ZTNA.
  • Versa Zero Trust – Premises. A secure access solution that extends the same ZTNA principles used for remote workers to those that are on-premises. Consistent and granular policies are enforced based on identity and a continuous assessment of user, device and network posture. This solution can be used together with Versa Secure Private Access to provide an integrated ZTNA solution for both remote and on-premises users with a single integrated policy repository.
  • Software-Defined Adaptive Micro-segmentation. Continuously assesses user behavior using AI/ML-based user and entity behavior analytics (UEBA) and device posture to identify potential threats and isolate security-degraded devices into microsegments in real-time. Potential threats are identified closest to the host, limiting the blast radius of a possible attack.
  • VersaAI™. A shared set of fine-tuned AI/ML engines natively integrated into the platform and embedded into the LAN to identify malicious behaviors in real time and enhance network and security operational excellence. The solution is configured, provisioned, and managed through a unified console with a unified policy repository and data lake to reduce complexity and enhance visibility.
    • VersaAI™ for Security. Versa’s UEBA and AIOps identify threats and anomalous behaviors and deliver actionable insights for accelerated remediation.
    • VersaAI™ for Networking. Pre-emptively adjusts traffic paths in real-time, automates troubleshooting, optimizes operations, reduces network downtime, and improves predictability.

“Versa has continued to lead the industry in delivering secure software-defined solutions with SD-WAN and Unified SASE,” said Apurva Mehta, Co-Founder and CTO for Versa Networks. “Now we are the first to fully software define and secure the Enterprise LAN with a modern approach. With Versa Secure SD-LAN, we are transforming the campus and branch and bringing in-line Zero Trust, automation, and unmatched control and visibility to the Enterprise LAN.”

Pricing and Licensing

For more information on pricing and licensing, please contact Versa at https://versa-networks.com/contact/.

About Versa Unified SASE

Versa’s AI/ML-powered single-vendor Unified SASE delivers organically developed best-of-breed functions that tightly integrate and deliver services via the cloud, on-premises, or as a blended combination of both, managed through a single pane of glass. Versa delivers SASE services such as Secure SD-WAN, Next-Generation Firewall, Next-Generation Firewall as a Service, Cloud Network Firewall, Unified Threat Management (UTM) including Advanced Threat Protection (ATP), Secure Web Gateway (SWG), Zero Trust Network Access (ZTNA), Cloud Access Security Broker (CASB), Data Loss Prevention (DLP), Remote Browser Isolation (RBI), and User and Entity Behavior Analytics (UEBA). Versa’s single-vendor Unified SASE platform goes above and beyond management console automation by providing the ability to integrate networks, points of presence, policy definitions, application definitions, agent logic, and data lakes.

About Versa Networks

Versa Networks, the leader in single-vendor Unified SASE platforms, delivers AI/ML-powered SSE and SD-WAN solutions. The platform provides networking and security with true multitenancy, and sophisticated analytics via the cloud, on-premises, or as a blended combination of both to meet SASE requirements for small to extremely large enterprises and Service Providers. Thousands of customers globally with hundreds of thousands of sites and millions of users trust Versa with their mission critical networks and security. Versa Networks is privately held and funded by Sequoia Capital, Mayfield, Artis Ventures, Verizon Ventures, Comcast Ventures, BlackRock Inc., Liberty Global Ventures, Princeville Capital, RPS Ventures and Triangle Peak Partners. For more information, visit https://www.versa-networks.com or follow Versa Networks on Twitter @versanetworks.

Press Contact
Dan Spalding

dspalding@versa-networks.com
(408) 960-9297

Versa Networks, VOS, and Versa Titan are or may be registered trademarks of Versa Networks, Inc. All other marks and names mentioned herein may be trademarks of their respective companies.