xx
Perhaps the best framework for securing infrastructure and data for today’s modern digital transformation is the one developed by the US National Institute of Standards and Technology, nesting with the Dept. of Commerce. It uniquely addresses the modern challenges of today’s business, including securing remote workers, hybrid cloud environments, and ransomware threats.
So while many vendors have tried to create their own definitions of Zero, there are a number of standards from
recognized organizations that can help you align Zero Trust with your organization.
Zero Trust Architecture is the most vendor neutral, comprehensive standard, not just for government entities, but for any organization. It also encompasses other elements from organizations like Forrester’s ZTX and Gartner’s CARTA. Finally, the NIST standard ensures compatibility and protection against modern attacks, for a cloud-first, work from anywhere model, that most enterprise need to achieve.
EXPLAINED:
PRINCIPLES OF
THE ZERO TRUST MODEL
Zero Trust is a security framework requiring all users, whether in or outside the organization’s network, to be authenticated, authorized, and continuously validated for security configuration and posture before being granted or keeping access to applications and data. Zero Trust assumes that there is no traditional network edge; networks can be local, in the cloud, or a combinatio,m. or hybrid with resources anywhere, as well as workers in any location.