Zero Trust: Beyond access controls

2020-01-23 06:30

One common misconception: Zero Trust is all about access controls and additional authentication, such as multi-factor authentication.

While these two things help organizations get to a level of Zero Trust, there is more to it: a Zero Trust approach is really an organization-wide architecture.

The Zero Trust principle acknowledges that vulnerabilities will always exist, and posits that the best way of dealing with them is to provide visibility into activity across the enterprise ecosystem.

Though we have barely scratched the surface of Zero Trust here, it should be clear that it is a robust, comprehensive, and responsive security architecture extending well beyond access controls.

Zero Trust is strong enough to keep bad actors out, it is also flexible enough to accommodate user preferences and incorporate new people, devices, applications, and data as they flow into and out of the enterprise.

News URL

http://feedproxy.google.com/~r/HelpNetSecurity/~3/ZzkAGZkbi9E/

#accesscontrol #zerotrust