零信任范式的采用

1| ©2024 SNIA. All Rights Reserved. Adopting the Zero Trust ParadigmEric Hibbard, CISSP, FIP, CISASamsung Semiconductor, Inc.2 | ©2024 SNIA. All Rights Reserved. Perimeter Security ModelMany organizations use a traditional perimeter security modelAssumes that all users inside the network can be trusted while all users outside the network are untrustworthyAssumes an effective barrier can be established and maintainedResources accessed from the Internet are often located within a DMZFirewalls, intrusion detection systems (IDS), and virtual private networks (VPN) are common elements of perimeter security3 | ©2024 SNIA. All Rights Reserved. Zero Trust (ZT) Security ModelPrimarily focused on data and service protection; can also includeall enterprise assets (devices, infrastructure components, applications, virtual and cloud components) subjects (end users, applications and other non-human entities that request information from resources)Assumes that an attacker is present in the e