Zero Trust Security Architecture is a set of security principles that are designed to provide comprehensive protection of digital assets, services, and communications in an environment that has increasingly become perimeter-less. This is accomplished by moving the defensive focus from static, network-based perimeters to one that focuses on users, resources, and assets. The zero trust model is the application of these principles based on the premise that no entity, whether inside or outside the network, should be trusted by default. This model assumes that an attacker is already present in the environment, whether it be via a device, user, or network location, and that an enterprise-owned environment is no different or more trustworthy than any non-enterprise-owned environment. Zero trust architecture is based on the idea of least privilege access, which means that access is granted to users and devices on a per-request basis, ensuring that users and devices have only the necessary access to perform their functions and often for only a finite period of time. This minimizes the attack surface and limits the damage that can be caused in the event of a data breach.

Zero Trust Architecture