this post was submitted on 06 Mar 2024
70 points (98.6% liked)

Cybersecurity

5687 readers
31 users here now

c/cybersecurity is a community centered on the cybersecurity and information security profession. You can come here to discuss news, post something interesting, or just chat with others.

THE RULES

Instance Rules

Community Rules

If you ask someone to hack your "friends" socials you're just going to get banned so don't do that.

Learn about hacking

Hack the Box

Try Hack Me

Pico Capture the flag

Other security-related communities !databreaches@lemmy.zip !netsec@lemmy.world !cybersecurity@lemmy.capebreton.social !securitynews@infosec.pub !netsec@links.hackliberty.org !cybersecurity@infosec.pub !pulse_of_truth@infosec.pub

Notable mention to !cybersecuritymemes@lemmy.world

founded 1 year ago
MODERATORS
 

The NSA has issued guidance on adopting zero-trust principles to counter internal network threats. Zero-trust architecture prevents unauthorized access and movement within networks by assuming threats exist and enforcing strict access controls. The approach includes data flow mapping, segmentation, and software-defined networking to minimize breach impacts. No CVEs are associated with this guidance.

you are viewing a single comment's thread
view the rest of the comments
[–] agent_flounder@lemmy.world 9 points 8 months ago

That's not what (the new hype buzzwords) Zero Trust Architecture means. Like at all.

Instead of the crunchy shell network perimeter and gooey center paradigm of enterprise networks of the past 30 years, ZTA is a response to the nebulous and disappearing permitted. It's supposed to control access to anything anywhere anytime but securely.

The main feature is dynamic attribute-based network access control. Access can be granted or revoked moment to moment based on who you are, where you are, even attributes of your computer like patch level.

Let's say a patch just came out for your laptop yesterday but it isn't applied yet. ZTA approach denies you access to sensitive networks, but not to patching infrastructure. Once patched, your access is permitted. Or say you turn off your antivirus mid-download. Access revoked within moments.

Rather than erect silos it sort of makes access more transparent to the end user and so remote vs on site access basically seems the same to them.

Yeah, yeah, I know, NSA bad-- I am wearing the EFF T-shirt that says so right now.

But in addition to wrecking privacy and spying on the innocent (hi, you fuckers, .l..), they also do offer somewhat legit advice now and then.