The Core security services are referred to as SSE (Security Services Edge), which is a subset of SASE.

i.e.  SASE = SSE + SD-WAN

The key security components/products of SASE include:

SSE Services (Security Services Edge):

Secure web gateway (SWG): Prevents unsecured internet traffic from entering an organization’s internal network by filtering and blocking malicious web traffic. 

Cloud Access Security Broker (CASB): Acts as an enforcement point between cloud service users and providers, protecting data and preventing threats. 

Zero Trust Network Access (ZTNA): Provides secure access to internal applications for remote users based on identity verification and contextual access policies. 

Firewall as a Service (FWaaS):  Advanced Layer 7/Next-generation firewall capabilities delivered from the cloud, including intrusion prevention and deep packet inspection. 

Data Loss Prevention (DLP): Protects sensitive data from exfiltration. DLP is not a core SSE component, but frequently integrated into SSE solution as an essential security feature, implemented as part of SWG or CASB

SD-WAN (Software-Defined Wide Area Network):  A virtual wide area network that uses software technologies to manage and optimize network connectivity across geographically dispersed locations. SD-WAN uses a centralized controller to determine optimal data transmission paths based on factors like network congestion, latency and policy configs. SD-WAN creates a virtualized network overlay that can be managed remotely and scaled quickly.