Zero Trust Model Guidance The National Security Agency (NSA) has released Cybersecurity Information Sheet: Embracing a Zero Trust Security Model, which provides information about, and recommendations for implementing Zero Trust…
Read More
Zero Trust Model Guidance The National Security Agency (NSA) has released Cybersecurity Information Sheet: Embracing a Zero Trust Security Model, which provides information about, and recommendations for implementing Zero Trust…
The NSA guidance explains, “The Zero-Trust security model assumes that a breach is inevitable or has likely already occurred, so it constantly limits access to only what is needed and looks for anomalous or malicious activity.” Governments have been using this “need to know” paradigm since time immemorial when dealing with state secrets; though, given the number of insider threat cases being prosecuted that involve government insiders, one is right to question the efficacy/implementation of a “need to know.”