Perimeter based approach to network and security is widely adopted until the world shift toward perimeterless security, or this few year know as zero trust, or technically known as zero trust architecture (NTA) or zero trust network architecture (NTNA), as the main stream to design and implementation of modern IT systems. The take of “never trust, always verify” approach is to not allow devices to be trusted by default, even if they are connected to a permission network such as corporate local area network (LAN) and even if they were previously verified.
Transition to zero trust perimeterless security architecture is needed to address modern digital workspace and anywhere operations, cloud-first and cloud-native, as well as modern endpoint device access, from smartphone, tablet, Internet of Things (IoT) device and many more non-conventional IT devices. The zero trust approach advocates mutual authentication, including checking the identity and integrity of devices without respect to location, and providing access to applications and services based on the confidence of device identity and device health in combination with user authentication. This is different from the previous or obsolete traditional perimeter security, who in the past for setup the gateway security to address all the security concerns, it is not more and adequate for modern and future of work.
More and more countries have adopted zero trust architecture (ZTA) for their cybersecurity regulations compliance and as industry best practice. As a quick check and self audit, you can base on the following few areas to review your current practices and find the gap, for kick start the initiative.
- Single strong source of user identity
- User authentication
- Machine authentication
- Additional context, such as policy compliance and device health
- Authorization policies to access an application
- Access control policies within an application
E-SPIN Group in the enterprise ICT solution supply, consultancy, project management, training and maintenance for corporation and government agencies did business across the region and via the channel. Feel free to contact E-SPIN for your project requirement and inquiry.
Other post you may be interest: