NetFoundry: Zero Trust Overlay Mesh Based on OpenZiti

An Intellyx Brain Candy Update

We last spoke with NetFoundry in September, 2019. We spoke with them again this week. They continue to build out and gain adoption for their network overlay mesh zero trust solution, including a cloud hosted version that runs on AWS, GCP, Azure, and Oracle Cloud.

NetFoundry calls their cloud based solution CloudZiti. CloudZiti packages and supports a deployment of the OpenZiti open source project. 

Organizations use CloudZiti either independently or together with OpenZiti to create and manage a hidden “zero trust” software defined network, which effectively replaces VPNs and MPLS to protect network accessible assets such as applications, APIs, and data sources. 

The overlay “mesh” network is not discoverable from the Internet. An organization using CloudZiti and/or OpenZiti sends the access point URL to those it wishes to grant access.

CloudZiti and OpenZiti then authenticate IDs to control access to the mesh and the resources it protects.  

The network overlay mesh maps IDs rather than URLs and uses ID mapping tables to control access to network resources. 

NetFoundry also offers a commercially supported deployment of the Zrok open source project, which creates secure tunnels between applications. Zrok is also based on OpenZiti.  

In addition to the commercial offerings, NetFoundry supports the OpenZiti and Zrok projects. 

Copyright © Intellyx BV. Intellyx is an industry analysis and advisory firm focused on enterprise digital transformation. Covering every angle of enterprise IT from mainframes to artificial intelligence, our broad focus across technologies allows business executives and IT professionals to connect the dots among disruptive trends. None of the organizations mentioned in this article is an Intellyx customer. No AI was used to produce this article. To be considered for a Brain Candy article, email us at pr@intellyx.com.

SHARE THIS: