BeyondCorp

BeyondCorp is a security framework developed by Google that reimagines enterprise access by removing the assumption of trust from the network perimeter. Rather than relying on a VPN to grant access to internal applications, BeyondCorp uses identity, device posture, and user context to determine whether a given user should be allowed to access a resource. Access decisions are made at the application layer and are enforced by a software-defined perimeter that sits between users and services, regardless of their location or the network they use.

The model embodies core zero-trust principles: never trust, always verify; operate on least privilege; and assume

Originating at Google in the late 2000s as a practical response to mobile work and expanding cloud