Security strategy begins with an attitude: Never trust, always verify. The conventional notion of the enterprise perimeter—imagining it as one big bubble to be protected—is now thoroughly outdated in a world where infiltration can be accomplished via a staggering number of devices and applications, either already in the network or soon to join it.
In a modern security environment, where devices and external data sources from the internet of things and the edge are all factors, security strategies must be built around a zero trust approach—in other words, one that trusts nothing outside or inside an organization. With this model, the network and the threats that will inevitably come are viewed as constantly in motion, amorphous and invisible. Today’s perimeter should not be seen as one big protective cover over the entire enterprise.
Zero trust architecture