我们在欢迎来到 CIO Week 2023 一文中谈到,希望通过庆祝首席信息官(CIO)们为保证其组织安全和高效所做的工作来开始新的一年。
过去一周内,我们发布了 30 多个公告,包括全新服务、测试版、战略合作伙伴关系、第三方集成等,涉及组织技术堆栈的所有方面。本文概述了每一个公告,并标注哪些功能已经普遍可用(GA),哪些处于测试阶段,哪些在我们的路线图上。
我们交付了客户要求的关键功能 —— 例如更全面的网络钓鱼保护和与 Microsoft 生态系统的更深层次集成。展望未来,我们还描述了针对新兴技术领域的路线图,例如 Digital Experience Monitoring,以及我们的一个愿景:使通过 Cloudflare 网络从任何来源到任何目的地路由流量变得无比简单。
我们推出的这一切都是为了帮助 CIO 们加速数字化转型。本文组织了有关公告的概要,基于我们希望 CIO 们考虑与 Cloudflare 时拥有的三种感受:
CIO 现在拥有一个更简单的 Zero Trust 和 SASE 路线图 : 我们宣布了全新功能和更紧密的集成,使组织更容易采用 Zero Trust 安全性最佳实践,并迈向类似安全访问服务边缘(SASE)的理想架构。
CIO 们现在能够利用正确的技术和渠道合作伙伴: 我们宣布了多项集成和计划,旨在帮助组织利用正确的专业技能,按照自己的步伐实现 IT 和安全现代化。
CIO 们现在可轻松简化多云战略: 我们宣布了在不同的云环境中连接、保护和加速流量的新方法。
感谢您关注 CIO Week —— 这是 Cloudflare 2023 年多个创新周中的第一个。有时不容易跟上我们的创新步伐,但我们希望阅读本文并参加我们的回顾网络研讨会能有帮助。
如果您想与我们讨论如何实现您的 IT 和安全现代化,并使贵组织的 CIO 日子更轻松,请填写此处的表格。
简化您的 Zero Trust 和 SASE 旅程
保护访问这些博客文章重点使任何用户与任何应用程序的连接更快、更容易、更安全,并提供实现 Zero Trust 所需的精细化控制和全面可见性。
.tg {border-collapse:collapse;border-spacing:0;} .tg td{border-color:black;border-style:solid;border-width:1px;font-family:Arial, sans-serif;font-size:14px; overflow:hidden;padding:10px 5px;word-break:normal;} .tg th{border-color:black;border-style:solid;border-width:1px;font-family:Arial, sans-serif;font-size:14px; font-weight:normal;overflow:hidden;padding:10px 5px;word-break:normal;} .tg .tg-1wig{font-weight:bold;text-align:left;vertical-align:top} .tg .tg-ycd2{background-color:#F63;color:#FFF;font-weight:bold;text-align:center;vertical-align:top} .tg .tg-0lax{text-align:left;vertical-align:top}
| Blog | Summary |
|---|---|
| Beta: Introducing Digital Experience Monitoring | Cloudflare Digital Experience Monitoring will be an all-in-one dashboard that helps CIOs understand how critical applications and Internet services are performing across their entire corporate network. Sign up for beta access. |
| Beta: Weave your own global, private, virtual Zero Trust network on Cloudflare with WARP-to-WARP | With a single click, any device running Cloudflare’s device client, WARP, in your organization can reach any other device running WARP over a private network. Sign up for beta access. |
| GA: New ways to troubleshoot Cloudflare Access 'blocked' messages | Investigate ‘allow’ or ‘block’ decisions based on how a connection was made with the same level of ease that you can troubleshoot user identity within Cloudflare’s Zero Trust platform. |
| Beta: One-click data security for your internal and SaaS applications | Secure sensitive data by running application sessions in an isolated browser and control how users interact with sensitive data – now with just one click. Sign up for beta access. |
| GA: Announcing SCIM support for Cloudflare Access & Gateway | Cloudflare’s ZTNA (Access) and SWG (Gateway) services now support the System for Cross-domain Identity Management (SCIM) protocol, making it easier for administrators to manage identity records across systems. |
| GA: Cloudflare Zero Trust: The Most Exciting Ping Release Since 1983 | Cloudflare Zero Trust administrators can use familiar debugging tools that use the ICMP protocol (like Ping, Traceroute, and MTR) to test connectivity to private network destinations. |
博客
| Blog | Summary |
|---|---|
| GA: Email Link Isolation: your safety net for the latest phishing attacks | Email Link Isolation is your safety net for the suspicious links that end up in inboxes and that users may click. This added protection turns Cloudflare Area 1 into the most comprehensive email security solution when it comes to protecting against phishing attacks. |
| GA: Bring your own certificates to Cloudflare Gateway | Administrators can use their own custom certificates to apply HTTP, DNS, CASB, DLP, RBI and other filtering policies. |
| GA: Announcing Custom DLP profiles | Cloudflare’s Data Loss Prevention (DLP) service now offers the ability to create custom detections, so that organizations can inspect traffic for their most sensitive data. |
| GA: Cloudflare Zero Trust for Managed Service Providers | Learn how the U.S. Federal Government and other large Managed Service Providers (MSPs) are using Cloudflare’s Tenant API to apply security policies like DNS filtering across the organizations they manage. |
摘要
| Blog | Summary |
|---|---|
| Roadmap: How Cloudflare CASB and DLP work together to protect your data | Cloudflare Zero Trust will introduce capabilities between our CASB and DLP services that will enable administrators to peer into the files stored in their SaaS applications and identify sensitive data inside them. |
| Roadmap: How Cloudflare Area 1 and DLP work together to protect data in email | Cloudflare is combining capabilities from Area 1 Email Security and Data Loss Prevention (DLP) to provide complete data protection for corporate email. |
| GA: Cloudflare CASB: Scan Salesforce and Box for security issues | Cloudflare CASB now integrates with Salesforce and Box, enabling IT and security teams to scan these SaaS environments for security risks. |
测试版: 推出 Digital Experience Monitoring
| Blog | Summary |
|---|---|
| Why do CIOs choose Cloudflare One? | As part of CIO Week, we spoke with the leaders of some of our largest customers to better understand why they selected Cloudflare One. Learn six thematic reasons why. |
| Cloudflare is faster than Zscaler | Cloudflare is 38-55% faster at delivering Zero Trust experiences than Zscaler, as validated by third party testing. |
| GA: Network detection and settings profiles for the Cloudflare One agent | Cloudflare's device client (WARP) can now securely detect pre-configured locations and route traffic based on the needs of the organization for that location. |
Cloudflare Digital Experience Monitoring 将是一个一体化的仪表板,帮助 CIO 了解关键应用程序和互联网服务在整个企业网络中的性能情况。 在此注册测试版。
| Blog | Summary |
|---|---|
| Preview any Cloudflare product today | Enterprise customers can now start previewing non-contracted services with a single click in the dashboard. |
| GA: Improved access controls: API access can now be selectively disabled | Cloudflare is making it easier for account owners to view and manage the access their users have on an account by allowing them to restrict API access to the account. |
| GA: Zone Versioning is now generally available | Zone Versioning allows customers to safely manage zone configuration by versioning changes and choosing how and when to deploy those changes to defined environments of traffic. |
| Roadmap: Cloudflare Application Services for private networks: do more with the tools you already love | Cloudflare is unlocking operational efficiencies by working on integrations between our Application Services to protect Internet-facing websites and our Cloudflare One platform to protect corporate networks. |
测试版:利用 WARP-to-WARP 连接在 Cloudflare 网络上打造自己的全球、专用、虚拟 Zero Trust 网络
只需单击一下,组织中运行 Cloudflare 设备客户端 WARP 的任何设备都可以通过一个专用网络连接到运行 WARP 的任何其他设备。 注册测试版。
| Blog | Summary |
|---|---|
| GA: Expanding our Microsoft collaboration: Proactive and automated Zero Trust security for customers | Cloudflare announced four new integrations between Microsoft Azure Active Directory (Azure AD) and Cloudflare Zero Trust that reduce risk proactively. These integrated offerings increase automation, allowing security teams to focus on threats versus implementation and maintenance. |
| Beta: API-based email scanning | Now, Microsoft Office 365 customers can deploy Area 1 cloud email security via Microsoft Graph API. This feature enables O365 customers to quickly deploy the Area 1 product via API, with onboarding through the Microsoft Marketplace coming in the near future. |
| GA: China Express: Cloudflare partners to boost performance in China for corporate networks | China Express is a suite of offerings designed to simplify connectivity and improve performance for users in China and developed in partnership with China Mobile International and China Broadband Communications. |
| Beta: Announcing the Authorized Partner Service Delivery Track for Cloudflare One | Cloudflare announced the limited availability of a new specialization track for our channel and implementation partners, designed to help develop their expertise in delivering Cloudflare One services. |
GA: 排查 Cloudflare Access “阻止”消息问题的新方法
调查基于连接建立方式的“允许”或“阻止”决定,就像在 Cloudflare Zero Trust 平台上排查用户身份问题一样轻松。
| Blog | Summary |
|---|---|
| Beta: Announcing the Magic WAN Connector: the easiest on-ramp to your next generation network | Cloudflare is making it even easier to get connected with the Magic WAN Connector: a lightweight software package you can install in any physical or cloud network to automatically connect, steer, and shape any IP traffic. Sign up for early access. |
| GA: Cloud CNI privately connects your clouds to Cloudflare | Customers using Google Cloud Platform, Azure, Oracle Cloud, IBM Cloud, and Amazon Web Services can now open direct connections from their private cloud instances into Cloudflare. |
| Cloudflare protection for all your cardinal directions | This blog post recaps how definitions of corporate network traffic have shifted and how Cloudflare One provides protection for all traffic flows, regardless of source or destination. |
在一个隔离的浏览器中运行应用程序会话,并控制用户如何与敏感数据交互,以便保护敏感数据——现在一键即可启用。注册测试版。
GA: 推出对 Cloudflare Access 和 Gateway 的 SCIM 支持
Cloudflare 的 ZTNA(Access)和 SWG (Gateway)服务现在支持跨域身份管理系统(SCIM)协议,使管理员更容易管理跨系统的身份记录。
GA:Cloudflare Zero Trust:1983 年以来最令人兴奋的 Ping 版本
Cloudflare Zero Trust 管理员可以使用熟悉的 ICMP 协议调试工具(例如 Ping、Traceroute 和 MTR)来测试到专用网络目的地的连接性。
威胁防御这些博客文章专注于帮助组织过滤、检查和隔离流量,以保护用户免受钓鱼、勒索软件和其他互联网威胁。
.tg {border-collapse:collapse;border-color:#aaa;border-spacing:0;} .tg td{background-color:#fff;border-color:#aaa;border-style:solid;border-width:1px;color:#333; font-family:Arial, sans-serif;font-size:14px;overflow:hidden;padding:10px 5px;word-break:normal;} .tg th{background-color:#ff6633;border-color:#aaa;border-style:solid;border-width:1px;color:#fff; font-family:Arial, sans-serif;font-size:14px;font-weight:normal;overflow:hidden;padding:10px 5px;word-break:normal;} .tg .tg-1wig{font-weight:bold;text-align:left;vertical-align:top} .tg .tg-ycd2{background-color:#F63;color:#FFF;font-weight:bold;text-align:center;vertical-align:top} .tg .tg-0lax{text-align:left;vertical-align:top}
博客
摘要
GA:Email Link Isolation: 应对最新网络钓鱼攻击的安全网
Email Link Isolation(电子邮件链接隔离)是一张安全网,用于拦截那些最终出现在收件箱中且可能被用户点击的可疑链接。这层额外保护使 Cloudflare Area 1 成为防范网络钓鱼攻击领域最全面的电子邮件安全解决方案。
管理员可以使用自己的自定义证书来应用 HTTP、DNS、CASB、DLP、RBI 和其他过滤策略。
现在,Cloudflare 的数据丢失防护 (DLP) 服务提供创建自定义检测的功能,以便组织可以检查流量中最敏感的数据。
GA:适用于托管服务提供商的 Cloudflare Zero Trust
了解美国联邦政府和其他大型托管服务提供商(MSP)如何使用 Cloudflare 的租户 API 对其管理的组织应用 DNS 过滤等安全策略。
保护 SaaS 环境这些博客文章的重点是在 SaaS 应用程序环境中维护一致的安全性和可见性,特别是防止敏感数据泄露。
.tg {border-collapse:collapse;border-color:#aaa;border-spacing:0;} .tg td{background-color:#fff;border-color:#aaa;border-style:solid;border-width:1px;color:#333; font-family:Arial, sans-serif;font-size:14px;overflow:hidden;padding:10px 5px;word-break:normal;} .tg th{background-color:#f38630;border-color:#aaa;border-style:solid;border-width:1px;color:#fff; font-family:Arial, sans-serif;font-size:14px;font-weight:normal;overflow:hidden;padding:10px 5px;word-break:normal;} .tg .tg-1wig{font-weight:bold;text-align:left;vertical-align:top} .tg .tg-ycd2{background-color:#F63;color:#FFF;font-weight:bold;text-align:center;vertical-align:top} .tg .tg-0lax{text-align:left;vertical-align:top}
博客
摘要
路线图:Cloudflare CASB 和 DLP 如何协作以保护您的数据
Cloudflare Zero Trust 将在我们的 CASB 和 DLP 服务之间引入功能,使管理员能够查看存储在 SaaS 应用程序中的文件,并识别其中的敏感数据。
路线图:Cloudflare Area 1 和 DLP 如何协作保护电子邮件中的数据
Cloudflare 会将 Area 1 Email Security 与数据丢失防护 (DLP) 中的功能进行整合,为企业电子邮件提供全方位数据保护。
GA:Cloudflare CASB:扫描 Salesforce 和 Box 以检测安全问题
Cloudflare CASB 现在与 Salesforce 和 Box 集成,使 IT 和安全团队能够扫描这些 SaaS 环境的安全风险。
加速并保护连接除了产品功能,这个部分博客文章还强调了速度以及组织通过 Cloudflare 实现的其他战略优势。
.tg {border-collapse:collapse;border-color:#aaa;border-spacing:0;} .tg td{background-color:#fff;border-color:#aaa;border-style:solid;border-width:1px;color:#333; font-family:Arial, sans-serif;font-size:14px;overflow:hidden;padding:10px 5px;word-break:normal;} .tg th{background-color:#f38630;border-color:#aaa;border-style:solid;border-width:1px;color:#fff; font-family:Arial, sans-serif;font-size:14px;font-weight:normal;overflow:hidden;padding:10px 5px;word-break:normal;} .tg .tg-1wig{font-weight:bold;text-align:left;vertical-align:top} .tg .tg-ycd2{background-color:#F63;color:#FFF;font-weight:bold;text-align:center;vertical-align:top} .tg .tg-zb5k{color:#15C;text-align:left;vertical-align:top} .tg .tg-0lax{text-align:left;vertical-align:top}
博客
摘要
在 CIO Week 期间,我们与部分最大企业客户的领导者展开交流对话,以便更好地了解他们为什么选择了 Cloudflare One。了解六个主题原因。
第三方测试表明,Cloudflare 在提供 Zero Trust 体验方面比 Zscaler 快 38-55%。
GA:Cloudflare One 代理的网络检测和设置配置文件
现在,Cloudflare 的设备客户端 (WARP) 可以安全地检测预先配置的位置,并根据组织对该位置的需求路由流量。
使 Cloudflare 更易于使用这些博客文章重点介绍 Cloudflare 产品组合中的创新,以及 Zero Trust 和 SASE 领域之外的创新,以帮助组织轻松地保护和加速流量。
.tg {border-collapse:collapse;border-color:#aaa;border-spacing:0;} .tg td{background-color:#fff;border-color:#aaa;border-style:solid;border-width:1px;color:#333; font-family:Arial, sans-serif;font-size:14px;overflow:hidden;padding:10px 5px;word-break:normal;} .tg th{background-color:#f38630;border-color:#aaa;border-style:solid;border-width:1px;color:#fff; font-family:Arial, sans-serif;font-size:14px;font-weight:normal;overflow:hidden;padding:10px 5px;word-break:normal;} .tg .tg-1wig{font-weight:bold;text-align:left;vertical-align:top} .tg .tg-ycd2{background-color:#F63;color:#FFF;font-weight:bold;text-align:center;vertical-align:top} .tg .tg-zb5k{color:#15C;text-align:left;vertical-align:top} .tg .tg-0lax{text-align:left;vertical-align:top}
博客
摘要
现在,企业客户只需在仪表板中一键单击,即可开始预览非合同服务。
Cloudflare 让帐户所有者能够限制对帐户名下的 API 访问,通过这种方式让他们可以更轻松地查看和管理其用户对帐户的访问权限。
Zone Versioning(区域版本化)允许客户通过对更改进行版本化,并选择如何以及何时将这些更改部署到已定义的流量环境,从而安全地管理区域配置。
路线图:使用专用网络的 Cloudflare 应用程序服务:用你已经喜欢的工具做更多的事情
通过整合我们的应用服务(保护面向互联网的网站)和我们的Cloudflare One平台(保护企业网络),Cloudflare 正在提高运营效率。
找到适当的合作伙伴
除了针对渠道合作伙伴的新计划,这些博客文章还描述了更深入的技术集成,以帮助企业更有效地使用他们已经使用的 IT 和安全工具。
.tg {border-collapse:collapse;border-color:#aaa;border-spacing:0;} .tg td{background-color:#fff;border-color:#aaa;border-style:solid;border-width:1px;color:#333; font-family:Arial, sans-serif;font-size:14px;overflow:hidden;padding:10px 5px;word-break:normal;} .tg th{background-color:#f38630;border-color:#aaa;border-style:solid;border-width:1px;color:#fff; font-family:Arial, sans-serif;font-size:14px;font-weight:normal;overflow:hidden;padding:10px 5px;word-break:normal;} .tg .tg-1wig{font-weight:bold;text-align:left;vertical-align:top} .tg .tg-ycd2{background-color:#F63;color:#FFF;font-weight:bold;text-align:center;vertical-align:top} .tg .tg-0lax{text-align:left;vertical-align:top}
博客
摘要
GA:扩大我们与 Microsoft 的合作:为客户提供主动、自动化的Zero Trust 安全
Cloudflare 已推出 Microsoft Azure Active Directory (Azure AD)和 Cloudflare Zero Trust 之间的四项新集成,旨在主动降低风险。这些集成提高了自动化程度,使安全团队能够专注于威胁,无需顾及实施和维护。
测试版:基于 API 的电子邮件扫描
现在,Microsoft Office 365 客户可以通过 Microsoft Graph API 部署 Area 1 云电子邮件安全。这一功能使 O365 客户能够通过 API 快速部署 Area 1 产品,并将在不久后登陆 Microsoft Marketplace。
GA:China Express:Cloudflare 合作伙伴提升企业网络在中国境内的性能
China Express 是一套与中国移动国际和中国宽带通信合作开发的产品,旨在简化中国用户的连接并提高性能。
测试版:推出 Cloudflare One 授权服务交付合作伙伴认证计划
Cloudflare 推出针对渠道和实施合作伙伴的全新专业认证计划,旨在帮助他们发展交付 Cloudflare One 服务的专业技能。
简化您的多云策略
这些博客文章重点介绍了一些创新,使组织机构更容易“接入” Cloudflare 网络,并将流量从任何来源发送到任何目的地。
.tg {border-collapse:collapse;border-color:#aaa;border-spacing:0;} .tg td{background-color:#fff;border-color:#aaa;border-style:solid;border-width:1px;color:#333; font-family:Arial, sans-serif;font-size:14px;overflow:hidden;padding:10px 5px;word-break:normal;} .tg th{background-color:#f38630;border-color:#aaa;border-style:solid;border-width:1px;color:#fff; font-family:Arial, sans-serif;font-size:14px;font-weight:normal;overflow:hidden;padding:10px 5px;word-break:normal;} .tg .tg-1wig{font-weight:bold;text-align:left;vertical-align:top} .tg .tg-ycd2{background-color:#F63;color:#FFF;font-weight:bold;text-align:center;vertical-align:top} .tg .tg-0lax{text-align:left;vertical-align:top} .tg .tg-zb5k{color:#15C;text-align:left;vertical-align:top}
博客
摘要
测试版:隆重推出 Magic WAN Connector:到达企业下一代网络的最简便入口
凭借 Magic WAN Connector,Cloudflare 让网络连接更简便。这个轻量级软件包可安装到任何物理网络或云网络,自动连接、引导和整形 IP 流量。 注册测试版。
GA:Cloud CNI 在您的云和 Cloudflare 之间建立专用连接
使用 Google Cloud Platform、Azure、Oracle Cloud、IBM Cloud 和 Amazon Web Services 的客户现在可以从他们的私有云实例直接连接到 Cloudflare。
这篇博客文章概述了企业网络流量的定义如何改变,以及 Cloudflare One 如何为所有流量提供保护,无论其来源或目的地为何。