Zero Trust
Also known as: ZTA, zero trust architecture
Zero Trust is a security model that assumes no implicit trust based on network location — every request is authenticated, authorized, and continuously validated regardless of whether it originates inside or outside the corporate perimeter.
Detailed explanation
Zero Trust replaces the traditional perimeter model (trusted internal network, untrusted external network) with per-request verification. Identity, device posture, and context (location, time, behavior) determine access on a least-privilege basis.
In practice, Zero Trust is delivered through identity-aware proxies (BeyondCorp, Cloudflare Access, Tailscale), strong authentication (FIDO2, conditional MFA), microsegmentation, continuous device verification, and policy engines that combine these signals.
Zero Trust is not a product — it is an architecture. Most adoption journeys are multi-year, starting with identity consolidation and per-application access, then moving toward microsegmentation and continuous verification across cloud, SaaS, and on-premise systems.