Zero Trust Security Strategies and Guideline

Seaman, Jim

doi:10.1007/978-3-031-09691-4_9

Cited by 5 publications

(4 citation statements)

References 5 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…For businesses with several cloud environments, multiple linked systems, and a desire for more control over individual cloud access as well as cloud-based services and apps, a Zero Trust architecture is perfect [18,19]. Compared to traditional network security, which employed the "trust but verify" approach, zero trust stands for a significant change [20,21]. The implementation of this framework combines advanced technologies such as risk-based multi-factor authentication, identity protection, next-generation endpoint security, and robust cloud workload technology to verify a user or system's identity, consider access at that time, and keep system security [20].…”

Section: How Zero Trust Workmentioning

confidence: 99%

“…The implementation of this framework combines advanced technologies such as risk-based multi-factor authentication, identity protection, next-generation endpoint security, and robust cloud workload technology to verify a user or system's identity, consider access at that time, and keep system security [20]. Zero Trust also demands data encryption, email security, and asset and endpoint cleanliness verification before connecting to applications [21]. Under Zero Trust architecture, organizations must thus constantly monitor and verify that an individual and their device (real-time validation) have the required privileges and attributes [22].…”

Section: How Zero Trust Workmentioning

confidence: 99%

See 1 more Smart Citation

Zero-Trust Architecture (ZTA): Designing an AI-Powered Cloud Security Framework for LLMs’ Black Box Problems

Dash

2024

Current Trends in Eng Sc

View full text Add to dashboard Cite

Businesses are becoming more interested in developing and testing Large Language Models (LLMs) in their own settings to support decision-making and growth as a result of the rapid emergence of AI and cloud computing. Here’s the dilemma, though: to what extent do you believe these models and the data they were trained on? We don’t know the feature list of an LLM, which presents the first obstacle when discussing trust and the reasons why there should be zero trust. Although it may seem a bit extreme, this is accurate for two reasons. When it comes to GenAI models nowadays, the more multimodal and more capabilities they have, the better. This way of thinking is great for exploring and confirming if GenAI can address a business problem, but it’s a surefire way to run into trouble when attempting to put things into production in an organizational setting. An enterprise cybersecurity architecture known as a zero-trust architecture (ZTA) is built on the ideas of zero trust and is intended to stop data breaches, enhance privacy, and restrict internal lateral movement. This article discusses ZTA, its logical aspects, probable deployment scenarios, AI rules, threats and limitations in order to provide a detailed understanding of why enterprises must adapt a ZTA framework in a cloud-based environment for AI model deployment.

show abstract

Section: How Zero Trust Workmentioning

confidence: 99%

Section: How Zero Trust Workmentioning

confidence: 99%

Zero-Trust Architecture (ZTA): Designing an AI-Powered Cloud Security Framework for LLMs’ Black Box Problems

Dash

2024

Current Trends in Eng Sc

View full text Add to dashboard Cite

show abstract

“…Implementing a zero trust model, which strives to verify and authorize every device, app, and user attempting to access every resource (Ray, 2023). Reviewing and improving the security policies, procedures, and performance, using tools such as audits, tests, benchmarks, or feedback (Seaman, 2023). These are some of the common proactive cybersecurity measures, but there may be other specific or customized measures for each organization.…”

Section: Motivations For Iso 27001 Adoptionmentioning

confidence: 99%

Iso 27001 in Banking: An Evaluation of Its Implementation and Effectiveness in Enhancing Information Security

Sarah Kuzankah Ewuga,

Zainab Efe Egieya,

Adedolapo Omotosho

et al. 2024

Financ. account. res. j.

View full text Add to dashboard Cite

As the banking industry becomes increasingly reliant on digital technologies and faces evolving cyber threats, the adoption of robust information security frameworks is imperative. ISO 27001, a globally recognized standard for information security management systems, has gained prominence as a comprehensive framework for safeguarding sensitive data. This study explores the implementation and effectiveness of ISO 27001 within the banking sector, evaluating its impact on enhancing information security. It delves into the specific challenges and considerations unique to the banking industry, where the confidentiality, integrity, and availability of financial information are paramount. It examines the motivations behind adopting ISO 27001, the process of implementation, and the associated organizational changes required to align with the standard's principles. A critical aspect of the evaluation involves assessing the tangible benefits and outcomes resulting from ISO 27001 implementation. This includes improvements in risk management, incident response capabilities, and the overall resilience of information security controls within banking environments. The study also investigates the role of ISO 27001 in fostering a culture of security awareness among banking employees and stakeholders. Ethical considerations, compliance challenges, and the balance between security and operational efficiency are examined to provide a holistic perspective on the standard's impact. It concludes with insights into the future of ISO 27001 adoption in the banking sector, considering emerging technologies, regulatory developments, and the evolving nature of cyber threats. This research contributes valuable insights into the effectiveness of ISO 27001 as a strategic framework for information security in banking, offering practical implications for industry practitioners, policymakers, and stakeholders invested in fortifying the digital resilience of financial institutions Keywords: ISO 27001, Banking, Information Security, Ethical, Financial Institution.

show abstract

“…Table 2 presents some of the emerging technologies for cloud security improvement. This is an approach that assumes no trust within or outside an organization's network perimeter [185]. Every user, device, and application are treated as untrusted until proven otherwise.…”

Section: Emerging Technologies and Future Trendsmentioning

confidence: 99%

Security challenges in cloud computing: A comprehensive analysis

Janet Julia Ang'udi

2023

World J. Adv. Eng. Technol. Sci.

View full text Add to dashboard Cite

The security issues surrounding cloud computing, a quickly developing technology that is now essential to both personal and business computing, are thoroughly examined in this study. Cloud computing presents serious security risks that require careful attention, despite its many advantages such as scalability, cost-effectiveness, and flexibility. In-depth discussions of a number of important security topics are covered in this paper, including network security, access control, data breaches, legal and regulatory framework compliance, and new threats and vulnerabilities. The paper illuminates the complexities of data and application security in the cloud environment by thoroughly examining these subjects. The study also looks at actual case studies to show how security breaches in cloud computing affect things and how to fix them. The study intends to offer insightful analyses of security challenges with practical implications by examining these cases and providing lessons learned from incidents that have happened in various cloud computing scenarios. Our comprehension of the complex nature of security threats and the tactics used to counter and mitigate them is improved by looking closely at these cases. This study looks into the potential benefits of cloud security enhancements from emerging technologies like artificial intelligence and machine learning, in addition to identifying existing challenges. The research investigates the potential benefits of these technologies in terms of automated security responses, adaptive access controls, and proactive threat detection. Cloud environments may be able to improve their security posture against new and sophisticated threats by utilizing the powers of AI and machine learning. Furthermore, by projecting future trends and challenges in cloud security, this paper offers a forward-looking view of the changing field. Comprehending these possible obstacles is crucial to creating proactive and flexible security approaches that can successfully tackle the ever-changing landscape of cloud computing. This paper's ultimate objective is to offer insightful information about practical approaches and industry best practices for safeguarding cloud environments. Organizations can navigate the complexity of the cloud landscape while protecting their data and applications from the ever-evolving threat landscape by striking a balance between the enormous potential of cloud computing and the necessity of maintaining strong security measures.

show abstract

Zero Trust Security Strategies and Guideline

Cited by 5 publications

References 5 publications

Zero-Trust Architecture (ZTA): Designing an AI-Powered Cloud Security Framework for LLMs’ Black Box Problems

Zero-Trust Architecture (ZTA): Designing an AI-Powered Cloud Security Framework for LLMs’ Black Box Problems

Iso 27001 in Banking: An Evaluation of Its Implementation and Effectiveness in Enhancing Information Security

Security challenges in cloud computing: A comprehensive analysis

Contact Info

Product

Resources

About