SASE Certification = SD-WAN Certification + SSE Certification + Zero Trust Certification
Increased use of cloud services, the rise of remote and hybrid work, and the pressing need to apply Zero Trust (ZT) principles are fueling explosive demand for Secure Access Service Edge (SASE) technologies and services, which solve the problem of protecting users, devices, and applications at scale regardless of their location (public cloud, private cloud, on-premises, Internet, etc.).
Zero Trust is a security framework that assumes no implicit trust for users, devices, or applications. It consists of subject and target actors, identity management (IdM), access control, policy management, policy end points, and continuous monitoring which is crucial to defend against the ever increasing cyber threats.
Zero Trust Certification is part of the new SASE Certification program.
Zero Trust certification tests are based on the Zero Trust attributes and their behaviors as defined in the following ZT-related standards:
Demonstrate compliance to Mplify standards and effectiveness of Zero Trust cybersecurity services.
All Zero Trust certifications are listed in the Services Certification Registry
MEF SASE Certification – Frequently Asked Questions — 2025 Mar
Product Portfolio: SD-WAN Certification, Zero Trust Certification, SSE Certification, SASE Certification, SASE
Tags: Certification
Addressing over 40 common questions with links to additional materials.
MEF Certified SASE RFI Template for Enterprises — 2025 Feb
Product Portfolio: Enterprise APIs, SASE, SD-WAN Certification, Zero Trust Certification, SSE Certification, SASE Certification
This RFI template helps enterprise buyers evaluate certified, standards-based Secure Access Service Edge (SASE) solutions that integrate SD-WAN, Zero Trust, and Security Service Edge (SSE) capabilities.
MEF 163 Draft Release 3 Zero Trust Certification Test Cases and Requirements — 2024 May
Product Portfolio: Zero Trust, Zero Trust Certification
A Zero Trust Framework (ZTF), defined in MEF 118, is a cybersecurity architecture where users or clients (end users, applications, and other nonhuman Users, Devices, and Applications that request information from resources) are authenticated, authorized, and continuously validated before being granted access to, maintaining access to, or performing operations on applications.
MEF 118 Zero Trust Framework for MEF Services — 2022 Oct
Product Portfolio: SASE, Zero Trust, Zero Trust Certification
This standard defines a framework and requirements addressing Identity and Authentication of the different Actors plus Policy-Based Access Control providing enforcement at Policy End Points.