Never trust, always verify: A multivocal literature review on current knowledge and research gaps of zero-trust

Buck, Christoph; Olenberger, Christian; Schweizer, André; Völter, Fabiane; Eymann, Torsten

doi:10.1016/j.cose.2021.102436

Cited by 123 publications

(43 citation statements)

References 29 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…In essence, ZTS is a multilayer cybersecurity approach, including defence-in-depth controls [24]. It enables a resilient, consistent, and responsive approach to mitigate threat risks that could materialise due to sophisticated attacks and anomalies [12,25]. e practice is rooted in the principle of "never trust, always verify.…”

Section: Zero-trust Securitymentioning

confidence: 99%

“…Approaches are required to minimise the impact of security breaches and prevent threat-actor lateral movement by segmenting access across the network and applications. Security policies [25] are needed that consider identity and contextual information from the entities where appropriate. Segmentation at the network and application layers drastically reduces the risk of a threat actor laterally moving between network subnets and application tiers.…”

Section: Securementioning

confidence: 99%

See 1 more Smart Citation

A Maturity Framework for Zero-Trust Security in Multiaccess Edge Computing

Ali

Hijjawi

Campbell

et al. 2022

Security and Communication Networks

View full text Add to dashboard Cite

Multiaccess Edge Computing (MEC) has been adopted to provide an environment that supports cloud computing capabilities and IT services at the network edge. The open architecture of cloud computing and network access at the edge provides malicious actors with many attack vectors. The MEC system entities cannot be permanently trusted due to the dynamic and shareable nature of MEC deployments. This paper presents a classification of MEC entities that can be used to define security controls based on the Zero-Trust Security approach. The security controls are organised into a maturity framework that can be used to guide the systematic development of trust and security in an MEC environment. In this framework, a Minimum Viable Security posture defines the first operational step towards full implementation of Zero-Trust Security in an MEC environment.

show abstract

Section: Zero-trust Securitymentioning

confidence: 99%

Section: Securementioning

confidence: 99%

A Maturity Framework for Zero-Trust Security in Multiaccess Edge Computing

Ali

Hijjawi

Campbell

et al. 2022

Security and Communication Networks

View full text Add to dashboard Cite

show abstract

“…Every organization can adapt to ZTA differently depending on different organizational and technological factors. In this section, we extracted seventeen components of ZTA by reviewing various academic and industry resources (Modderkolk, 2018;Chowdhury, 2019;Rivas, 2019;Embrey, 2020;Rose et al, 2020;Uttecht, 2020;Alevizos, Ta and Hashem Eiza, 2021;Banach, 2021;Buck et al, 2021;Checkpoint, 2021;Colortokens, 2021;Garbis and Chapman, 2021;Sanders et al, 2021)…”

Section: Apt Analysismentioning

confidence: 99%

Zero Trust and Advanced Persistent Threats: Who Will Win the War?

Karabacak¹,

Whittaker²

2022

iccws

View full text Add to dashboard Cite

Advanced Persistent Threats (APTs) are state-sponsored actors who break into computer networks for political or industrial espionage. Because of the nature of cyberspace and ever-changing sophisticated attack techniques, it is challenging to prevent and detect APT attacks. 2020 United States Federal Government data breach once again showed how difficult to protect networks from targeted attacks. Among many other solutions and techniques, zero trust is a promising security architecture that might effectively prevent the intrusion attempts of APT actors. In the zero trust model, no process insider or outside the network is trusted by default. Zero trust is also called perimeterless security to indicate that it changes the focus from network devices to assets. All processes are required to verify themselves to access the resources. In this paper, we focused on APT prevention. We sought an answer to the question: "could the 2020 United States Federal Government data breach have been prevented if the attacked networks used zero trust architecture?" To answer this question, we used MITRE's ATT&CK® framework to extract how the APT29 threat group techniques could be mitigated to prevent initial access to federal networks. Secondly, we listed basic constructs of the zero trust model using NIST Special Publication 800-207 and several other academic and industry resources. Finally, we analyzed how zero trust can prevent malicious APT activities. We found that zero trust has a strong potential of preventing APT attacks or mitigating them significantly. We also suggested that vulnerability scanning, application developer guidance, and training should not be neglected in zero trust implementations as they are not explicitly or strongly mentioned in NIST SP 800-207 and are among the mostly referred controls in academic and industry publications.

show abstract

“…economic analysis [17], intrusion detection [4] and authentication [132]. Yan and Wang [151] reviews the key technologies in the components of ZTA, and their application in real-world scenarios.…”

Section: Existing Surveysmentioning

confidence: 99%

“…Buck et al [17] analyzes the disadvantages and costs of ZTA from an economics and user perspective based on blockchain. Alevizos et al [4] also used blockchain to enhance the zero-trust architecture to the endpoint and reviewed state-of-the-art blockchain-based intrusion detection systems.…”

Section: Existing Surveysmentioning

confidence: 99%

Automation and Orchestration of Zero Trust Architecture:Potential Solutions and Challenges

Cao¹,

Pokhrel²,

Zhu³

et al. 2022

Preprint

View full text Add to dashboard Cite

<p>Zero Trust Architecture (ZTA) is a paradigm shift in how we protect data, stay connected, and access resources. ZTA is non-perimeter based defense, which has been emerging as a promising revolution in the cybersecurity field. It can be used to continuously maintain security by safeguarding against attacks both from inside and outside of the network system. However, automation and orchestration ZTA, an essential direction towards its seamless deployments over real-word networks, have been poorly understood in literature. In this paper, we first identify the bottlenecks, discuss the background of ZTA and compare it with traditional perimeter-based security architectures. More importantly, we present a comprehensive direction towards the automation and orchestration of ZTA by employing AI techniques. In other words, the key potential and roles of celebrates AI techniques for the automation and orchestration of ZTA are demonstrated for further exploration. Overall, in this review paper, we develop a foundational view on the challenges and potential enablers for the automation and orchestration of ZTA.</p>

show abstract

Never trust, always verify: A multivocal literature review on current knowledge and research gaps of zero-trust

Cited by 123 publications

References 29 publications

A Maturity Framework for Zero-Trust Security in Multiaccess Edge Computing

A Maturity Framework for Zero-Trust Security in Multiaccess Edge Computing

Zero Trust and Advanced Persistent Threats: Who Will Win the War?

Automation and Orchestration of Zero Trust Architecture:Potential Solutions and Challenges

Contact Info

Product

Resources

About