In this Methodology

Security Service Edge (SSE) solutions leverage cloud scalability, flexibility, and operational benefits to deliver security – Access Control, Authentication and Identity, Data Loss Prevention (DLP), DNS protection, Encryption (TLS), Exploit detection and prevention, Malware and Phishing protection (including via Browser Isolation), Cloud Access / Application control (CASB), and the ability to implement Zero Trust Network Access (ZTNA).

The methodology focuses on functionality and performance related to the Threat Prevention portion of the service, including URL Filtering, Browser Isolation, and Sandboxing. This version introduces latency testing and post-quantum cryptography (PQC) cipher support and shifts our evaluation focus from tunnel-based to agent-based SSE products, better reflecting how enterprises are deploying SSE today.