8 Areas of Future Research in Zero Trust: Key Takeaways from Government and Industry

Abstract

On March 1, 2023, the Biden Administration released the National Cybersecurity Strategy. As part of the strategy, the Biden administration committed to improving federal cybersecurity through the implementation of a Zero Trust Architecture (ZTA) strategy and the modernization of information technology (IT) and operational technology (OT) infrastructure. What is Zero Trust? According to NIST SP 800-207, Zero Trust is an evolving set of cybersecurity paradigms that move defenses from static, network-based perimeters to focus on users, assets, and resources. Zero Trust Architecture (ZTA) uses zero trust principles to plan industrial and enterprise infrastructure and workflows. Zero trust assumes there is no implicit trust granted to assets or user accounts based solely on their physical or network location (i.e., local area networks versus the internet) or based on asset ownership (enterprise or personally owned).

Open PDF

Document Details

Document Type
Technical Report
Publication Date
May 31, 2023
Accession Number
AD1202699

Entities

People

  • Matthew Nicolai
  • Trista Polaski

Organizations

  • Carnegie Mellon University

Tags

Communities of Interest

  • Cyber

DTIC Thesaurus Topics

  • Authentication
  • Command And Control
  • Commerce
  • Computer Access Control
  • Computing System Architectures
  • Copyrights
  • Cybersecurity
  • Department Of Defense
  • Deployment
  • Devsecops
  • Engineering
  • Environment
  • Governments
  • Information Systems
  • Infrastructure
  • Local Area Networks
  • Materials
  • Networks
  • Physical Security
  • Security
  • Situational Awareness
  • Software Development
  • Standards
  • Universities
  • Workload

Fields of Study

  • Computer science

Readers

  • Cybersecurity.
  • Economics
  • Public Financial Management and Budgeting

Technology Areas

  • Cyber