The U.S. National Security Agency has issued “zero trust” guidance aimed at securing critical networks and sensitive data within key federal agencies. The new guidance issued Thursday describes some of the basic zero trust principles, such as “assume breach,” and lays down zero trust design concepts. The NSA adds it is also assisting Defense Department customers with the zero trust implementations. The agency describes three attack scenarios and how zero trust models can help prevent these attacks. With zero trust, embedding of malicious codes into popular enterprise network devices or applications can be avoided.”]
Source: https://www.cuinfosecurity.com/nsa-issues-guidance-on-zero-trust-implementation-a-16079