Security News > 2020 > May > Zero trust security: A cheat sheet

Zero trust security: A cheat sheet
2020-05-29 18:21

The US National Institute of Standards and Technology, in its current draft of standards for zero trust architecture, defines zero trust basically as "Zero trust is a cybersecurity paradigm focused on resource protection and the premise that trust is never granted implicitly but must be continually evaluated."

NIST adds, there is a distinction to be drawn between zero trust and zero trust architecture.

Zero trust architecture, on the other hand, "Is an enterprise's cybersecurity plan that utilizes zero trust concepts and encompasses component relationships, workflow planning, and access policies."

A holistic view of zero trust security is further defined by NIST as "The network infrastructure and operational policies that are in place for an enterprise as a product of a zero trust architecture plan."

NIST's draft zero trust standard argues that it's the very tools we currently have that will become part of the architecture of a good zero trust plan.


News URL

https://www.techrepublic.com/article/zero-trust-security-a-cheat-sheet/#ftag=RSS56d97e7