Zero Trust Security
A security model that verifies every request regardless of network location.
Also: ZTA
Definition
Zero trust is a security framework based on the principle of never trust, always verify, requiring continuous authentication and authorization for every user, device, and network request regardless of whether the requestor is inside or outside the corporate network perimeter. It replaces the traditional castle-and-moat model with identity-centric controls, micro-segmentation, least-privilege access, and continuous monitoring. Zero trust addresses insider threats and the dissolution of traditional network boundaries by cloud and remote work adoption.
Example
“Under zero trust, even an employee physically in the office must authenticate via MFA and have their device compliance verified before accessing the internal HR system for each session.”
Synonyms
- never trust always verify
- identity-centric security
- zero-trust architecture
Antonyms / Opposites
- perimeter security
- castle-and-moat security
- implicit trust
Images
CC-licensed · free to useVideo
Related Terms
- sso
- mfa
- vpn
- network-segmentation