Simplifying Implementation of a Zero Trust Architecture (eBook)
The primary challenge with zero trust is keeping it simple, operationally efficient and easy to understand, with predictably positive outcomes. This is achieved across various systems, not with different solutions, policies and technologies in different areas, and it should involve minimal friction.
Pavel Gurvich of Akamai says zero trust is all about making systems safer but since bad things will happen, it's also about lessening the impact when they do.
In this interview with Information Security Media Group, Gurwich describes the principles for zero trust:
- Don’t give anything trust by default;
- When you give trust, such as access, give as little as possible;
- Keep monitoring and recording so that when something bad happens, you have the visibility to understand what caused it.