An Implementation Method of Zero-trust Architecture

Chuan, Tao; Yao, LV; Qi, Zhenfei; Xie, Linjiang; Guo, Wei

doi:10.1088/1742-6596/1651/1/012010

Cited by 12 publications

(4 citation statements)

References 0 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…The study on Forrester ® and the 2017 IBM X-Force report provide a strong motivation to more comprehensively implement the zero trust model in the network. Meanwhile, adopts the zero trust model in intranet data to secure the authentication when users want to access intranet data [22]. This method or architecture can more effectively protect network communication.…”

Section: Zero Trust Model-based Information Securitymentioning

confidence: 99%

A case analysis for Kubernetes network security of financial service industry in Indonesia using zero trust model

2023

View full text Add to dashboard Cite

In this study, a case analysis of Kubernetes application in an enterprise providing financial services in Indonesia is presented. It is implemented to improve their digital services-based application, developed using micro-services architecture. Kubernetes, an application container technology, has been applied in the enterprise providing financial services in Indonesia to improve their digital services-based application, developed using micro-services architecture concepts. Without incorporating any additional hardware, the new technology and services have been adopted to existing virtualized resources of the enterprise. An infrastructure design for secure Kubernetes networking was built and has been studied using the data center provided by the enterprise. This study focuses on two important aspects: network and security. As a security guideline, the network recommendations from VMware, Cisco, and Forrester’s zero trust model were employed to design the infrastructure and were evaluated. The proposed secure network infrastructure design is successfully applied in the container networks using the zero trust requirement, the enterprise’s requirements, and constraints. And we hope this study about network design security can be used and adaptable with existing network and reduce risk and disruption to the business caused by the network.

show abstract

Section: Zero Trust Model-based Information Securitymentioning

confidence: 99%

A case analysis for Kubernetes network security of financial service industry in Indonesia using zero trust model

2023

View full text Add to dashboard Cite

show abstract

“…In 2020, Chuan T et al [51] proposed a method for implementing the concept of zero trust, which described seven evaluation elements of zero trust evaluation: required procedures (including weak password detection procedures, website detection procedures, configuration detection procedures, host vulnerability detection programs, brute force protection programs, hardening programs, mandatory access control programs, and micro-isolation control programs), operating system security vulnerabilities, network security vulnerabilities, weak passwords, high-risk ports, sensitive information protection, and accounts and passwords.…”

Section: Review On Trust Assessment Algorithmmentioning

confidence: 99%

A Survey on Zero Trust Architecture: Challenges and Future Trends

Huang

Chen

et al. 2022

Wireless Communications and Mobile Computing

View full text Add to dashboard Cite

The traditional perimeter-based network protection model cannot adapt to the development of current technology. Zero trust is a new type of network security model, which is based on the concept of never trust and always verify. Whether the access subject is in the internal network or the external network, it needs to be authenticated to access resources. The zero trust model has received extensive attention in research and practice because it can meet the new network security requirements. However, the application of zero trust is still in its infancy, and enterprises, organizations, and individuals are not fully aware of the advantages and disadvantages of zero trust, which greatly hinders the application of zero trust. This paper introduces the existing zero trust architecture and analyzes the core technologies including identity authentication, access control, and trust assessment, which are mainly relied on in the zero trust architecture. The main solutions under each technology are compared and analyzed to summarize the advantages and disadvantages, as well as the current challenges and future research trends. Our goal is to provide support for the research and application of future zero trust architectures.

show abstract

“…This challenge is exacerbated by the advent of quantum computing, 2 which poses significant risks to traditional encryption methods. The zero trust security model, 3,4 which assumes no implicit trust and verifies each request as though it originates from an open network, offers a paradigm shift in securing IT environments. This model's core principle of "never trust, always verify" aligns with the needs of modern distributed computing frameworks, such as federated learning.…”

Section: Introductionmentioning

confidence: 99%