What is Zero Trust?
With the increasingly grim cybersecurity threat landscape, zero trust security and the closely related topics of Zero Trust Network Access (ZTNA), Secure Access Service Edge (SASE), and Security Service Edge (SSE) are gaining heightened interest. This blog will focus on the zero-trust security specifically, first defining it, then discussing why it is important, the challenges, and how handheld tools at the edge can help with a successful implementation. Let’s begin with a definition. There are numerous ways to describe zero trust. According to Gartner1, “Zero trust is a holistic cybersecurity posture (or paradigm) in which the foundational tenet is that users are not implicitly trusted just because they are inside the network.
Instead, trust is explicit and granted adaptively, based on user, device, resource and data attributes and behavioral analytics.
Zero trust also focuses on data protection and restricts unauthorized lateral movement to guard against unauthorized data exfiltration.”
As should be clear, zero trust security demands ongoing and constant verification of network resources and activities. Because of its dynamism, this can be problematic at the network perimeter where there are typically frequent architectural updates, an ongoing flux in device access, and an explosion in the number of headless devices that result in escalating IoT security obstacles.
See Brad Reinboldt’s full article here:
