BeyondCorp: A New Approach to Enterprise Security

( )

! I think is a continuation of the work the Jericho Forum123 was doing back in the early mid 00’s when talking about perimeter-less networks and open-network environments. I think Google is doing some fascinating and useful work here and they are self-dog fooding. I expect they have all the data to prove their point of view. I'm doubtful that many CISO are ready to embrace this and even if they are, maybe reluctant to bring it before their organizations's board.

  1. The Jericho Forum, April 2006. Architecture for De-perimeterisation. Retrieved April 2007, from The Jericho Forum 
  2. The Jericho Forum, January 2007. Business Rationale for De-perimeterisation. Retrieved April 2007, from The Jericho Forum 
  3. Simmonds, P. (2004, July 28-29). This Decade's Security Challenge. Retrieved August 2007, from Blackhat Las Vegas 2004 

Author: Khürt Williams

a human, an application security architect, avid photographer, nature lover, and formula 1 fan who drinks beer.

2 thoughts on “BeyondCorp: A New Approach to Enterprise Security”

  1. So it's worth watching the Beyond Corp presentation from RSA 2017 ( - yes it's a pure-play Jericho Forum implementation circa 2006 [which they started in 2012] - though note there are no credits to Jericho!
    However also note that it only works because all people and devices are in THEIR identity system (in violation of JF commandment #8) - however this notwithstanding it's a great implementation demonstrating what Jericho said could be some - implemented on a global scale!
    I just wonder when they will look at how to fix their identity issue - hopefully by reading and implementing the JF work on Identity - now found in the work of the Global Identity Foundation.

    1. Hi Paul Simmonds , thanks for the tip on the RSA 2017 video. Google may not have credited the Jericho Forum but to anyone who's been around the infosec field for more than a decade, it was quite apparent where some of the ideas in BeyondCorp originated. Google is usually good about crediting originators so I am hoping this is just oversight.

Comments are closed.