Amazon Web Services (AWS) is launching the preview of AWS Verified Access, a new secure connectivity service designed to allow employees to enable local or remote secure access for corporate applications without a VPN.
The company says Verified Access is built using the AWS Zero Trust Security principles and leverages multiple security inputs to grant access to applications, but only when users and their devices meet specified security requirements.
According to AWS, security inputs include things such as user identity, role or the device’s security posture. The security control validates each application request, regardless of user or network, before granting access. This allows Verified Access to adapt the security posture based on changing conditions, and the service will disable access to applications if devices fall out of compliance.
In a blog, the company says AWS Verified Access can help provide secure access while eliminating some management roadblocks and making it easier to diagnose issues. AWS lists three key benefits: ease of use for IT administrators via a single configuration point, an open ecosystem that allows organizations to retain existing identity providers and device management tools, and ease of user for end users.
AWS Verified Access is available in preview in 10 AWS Regions: US East (Ohio, N. Virginia), US West (N. California, Oregon), Asia Pacific (Sydney), Canada (Central), Europe (Frankfurt, Ireland, London), and South America (São Paulo).
Pricing is based on usage, with no upfront or fixed price. The company will charge per application per hour, with tiers depending on the number of applications. Prices start in US East (N. Virginia) Region at $0.27 per verified Access endpoint and per hour. This price goes down to $0.20 per endpoint per hour when there are more than 200 applications.
There is a charge of $0.02 per GB for data processed by Verified Access, and organizations can also incur standard AWS data transfer charges for all data transferred using Verified Access.