Zero Trust (ZT) Concepts for Federal Government Architectures

Abstract

This report describes the concept of Zero Trust (ZT), based on the key idea that an organization should not implicitly trust any network traffic, device, or user solely based on their physical or logical network location. Instead, ZT focuses on protecting resources. It requires any and all communication to be between explicitly verified and authorized users and devices. Further, any and all communication should be monitored. ZT is often misrepresented as eliminating firewalls; it is more accurate to say ZT places firewall-like policy enforcement points throughout the network. This eliminates the traditional firewall as a gateway from outside to inside, but still provides the same filtering of traffic.

Open PDF

Document Details

Document Type
Technical Report
Publication Date
Jul 30, 2020
Accession Number
AD1108910

Entities

People

  • K. D. Uttecht

Organizations

  • MIT Lincoln Laboratory

Tags

Communities of Interest

  • Cyber
  • Energy and Power Technologies

DTIC Thesaurus Topics

  • Authentication
  • Best Practices
  • Computer Access Control
  • Computer Network Security
  • Computer Networks
  • Cybersecurity
  • Department Of Homeland Security
  • Governments
  • Homeland Security
  • Internet Of Things
  • Local Area Networks
  • National Governments
  • Network Architecture
  • Network Protocols
  • Personnel Management
  • Security Protocols
  • Transport Protocols

Fields of Study

  • Computer science

Readers

  • Computer Networking
  • Cybersecurity.