Network Security - Zero Trust Architecture (ZTA)

Core idea: Never trust, always verify.

Traditional networks assume that anything inside the organization’s network is safe. Zero Trust completely rejects this assumption. In Zero Trust Architecture, every user, device, application, and request must be authenticated and authorized every time, even if it comes from inside the network.

How it works

• No implicit trust based on location (inside/outside network)

• Every request is verified using:

  • Identity (user authentication)

  • Device security status

  • Context (location, time, behavior)

• Access is least-privilege (only what is necessary)

Why it is important

• Modern networks use cloud, remote work, and mobile devices

• Perimeter-based security is no longer reliable

• Prevents insider threats and lateral movement

Example

Even if an employee is connected to the office Wi-Fi, they still must authenticate again before accessing sensitive databases.