What is Zero Trust Security? Breaking Down a Zero Trust Architecture
As cloud-based enterprises and remote workers continue to grow in popularity, the need to implement zero-trust security models has never been more relevant. But what is zero trust security? In short, zero trust security is a model founded on the assumption that no user or device can be trusted and must be verified — including…
Security tool adoption jumps, Okta report shows
Identity and access management (IAM) vendor Okta today released a report detailing app use and security trends among its broad user base. Among other trends it identified, the report found that zero trust security policies have become more common, and uptake of a wide range of security tools has been sharply on the rise. Okta…
How to Apply a Zero Trust Security Model to ICS
A zero trust strategy establishes rules and good practices to improve the security and resiliency of your IT infrastructure, but what can it do for operational technologies (OT)? It turns out, quite a bit – but there are limits. Last fall, my colleague Greg Young wrote a blog post IoT and Zero Trust are Incompatible?…
SASE and Zero Trust: What’s the Connection?
Many organizations find themselves in a tricky spot today when it comes to digital transformation. With many looking to zero trust, how does Secure Access Secure Edge (SASE) fit in? On the one hand, the events of 2020 helped to speed up many digital adoption projects. A 2020 report from McKinsey found that more than…
Zero Trust: What NIST’s Guidelines Mean for Your Resources
In May, The White House released an executive order on improving the nation’s cybersecurity. The order came with various directives for Federal Civilian Executive Branch agencies. Among other efforts, the order focused on the federal government’s advance toward zero trust architecture (ZTA). It framed this journey as one “which shall incorporate, as appropriate, the migration…
The OWASP Top 10 Threats Haven’t Changed in 2021 — But Defenses Have
The more things change, the more they stay the same. Despite a changing threat landscape and threat actors who keep upping their game, the vulnerabilities behind the threats remain consistent. The OWASP Top 10, ranked by the Open Web Application Security Project, lists the 10 most prominent and dangerous risks and threats for applications. The OWASP…
Santa and the Zero-Trust Model: A Christmas Story
On Christmas Eve, snow will fall, Yule logs will blaze, visions of sugarplums will dance in children’s heads, and in the eyes of zero-trust experts, countless security breaches will happen in homes around the world. Zero-trust security has blanketed IT like the snow Bing Crosby sang about. Based on the idea of maintaining strict access…
