The National Security Agency’s guidance released on February 26, 2021, there are four key aspects of a zero-trust mindset. This leads to four key traps made by well-intentioned zero trust adopters. The components of zero trust include the following six domains: Identities, assets, networks, applications, data, and data. Focusing exclusively on identities leads to interminable projects with no end in sight in organizations. The trap most common practitioners fall into is the need to define and define every identity.
Source: https://www.helpnetsecurity.com/2021/03/30/zero-trust-traps/