Sangfor aTrust

Highlights
Verified users, compliant endpoints, secure network access, and granular permission control.

Detail
First introduced by John Kindervag in 2010 during his time as a principal analyst at Forrester Research, Zero Trust architecture is a comprehensive security framework designed to safeguard an organization’s most critical assets. It operates on the principle that every user, device, and connection is treated as untrusted by default, protecting against both external and internal threats, including those originating within the network.

Sangfor aTrust implements end-to-end security across key pillars such as identity, endpoint, network, behavior analysis, continuous trust assessment, and dynamic access control, forming a complete Zero Trust system.

The solution includes a built-in lightweight Identity and Access Management (IAM) system, with the option to integrate external IAM platforms for centralized identity management and provisioning. Users authenticate using a unified identity token.

It supports multiple authentication methods, including passwords, SMS, TOTP, digital certificates, and mobile app QR codes, reducing reliance on a single authentication factor.

Authentication policies are dynamically adjusted based on user security posture, access context, behavioral patterns, and resource sensitivity. This enables flexible authentication experiences, such as seamless login, step-up authentication, or enhanced verification, while maintaining a balance between security and usability.