Appendix A
Zero Trust Design Principles and Methodology

The Four Zero Trust Design Principles

  1. Define business outcomes: Ask the question “What is the business trying to achieve?” This aligns Zero Trust to the grand strategic outcomes of the organization and makes cybersecurity a business enabler instead of the business inhibitor that it is often seen as today.
  2. Design from the inside out: Start with the data, applications, assets, and services (DAAS) elements and the protect surfaces that need protection and design outward from there.
  3. Determine who or what needs access: Determine who needs to have access to a resource in order to get their job done. It is very common to give too many users too much access to sensitive data for no business reason.
  4. Inspect and log all traffic: All traffic going to and from a protect surface must be inspected and logged for malicious content and unauthorized activity, up through Layer 7.

The Five-Step Zero Trust Design Methodology

  1. Define the protect surface: Identify the DAAS elements: data, applications, assets, and services, that you want to protect.
  2. Map the transaction flows: Zero Trust is a system, and in order to secure the system, understanding how the network works is imperative to a successful Zero Trust deployment. The mapping of the transaction flows to and from the protect surface shows how various DAAS components interact with other resources on your network and, therefore, where to place the proper controls. The way traffic moves across the network, specific to the data in the protect surface, determines the design.
  3. Build a Zero Trust architecture: Part of the magic of the five-step model is that the first two steps will illuminate the best way to design the Zero Trust architecture. The architectural elements cannot be predetermined. Each Zero Trust environment is tailor-made for each protect surface. A good rule of thumb in design is to place the controls as close as possible to the protect surface.
  4. Create a Zero Trust policy: Ultimately, instantiate Zero Trust as a Layer 7 Policy Statement. Therefore, it requires Layer 7 controls. Use the Kipling Method of Zero Trust policy writing to determine who or what can access your protect surface.
  5. Monitor and maintain the environment: One of the design principles of Zero Trust is to inspect and log all traffic, all the way through Layer 7. The telemetry provided by this process will not just help prevent data breaches and other significant cybersecurity events, but will provide valuable security improvement insights. This means that each protect surface can become more robust and better protected over time. Telemetry from cloud, network, and endpoint controls can be analyzed using advances in behavioral analytics, machine learning, and artificial intelligence to stop attacks in real time and improve security posture over the long term.
..................Content has been hidden....................

You can't read the all page of ebook, please click here login for view all page.
Reset
52.14.80.90