{"id":50920,"date":"2023-03-07T10:00:00","date_gmt":"2023-03-07T10:00:00","guid":{"rendered":"https:\/\/www.csoonline.com\/article\/3247848\/what-is-zero-trust-a-model-for-more-effective-security.html#tk.rss_security"},"modified":"2023-03-07T10:00:00","modified_gmt":"2023-03-07T10:00:00","slug":"what-is-zero-trust-a-model-for-more-effective-security","status":"publish","type":"post","link":"https:\/\/www.threatshub.org\/blog\/what-is-zero-trust-a-model-for-more-effective-security\/","title":{"rendered":"What is zero trust? A model for more effective security"},"content":{"rendered":"<div><img decoding=\"async\" src=\"https:\/\/images.idgesg.net\/images\/article\/2021\/07\/conceptual_network_labeled_zero_trust_by_olivier_le_moal_shutterstock_1958585461_digital-only_license_2400x1600-100896571-large.jpg?auto=webp&amp;quality=85,70\" class=\"ff-og-image-inserted\"><\/div>\n<p>Security leaders are embracing zero trust, with the vast majority of organizations either implementing or planning to adopt the strategy. The <a href=\"https:\/\/www.okta.com\/resources\/whitepaper-the-state-of-zero-trust-security-2022\/\" rel=\"nofollow\">2022 State of Zero-Trust Security<\/a> report found that 97% of those surveyed either have or plan to have a zero-trust initiative in place within 18 months.<\/p>\n<p>In fact, the percentage of organizations with zero trust already in place more than doubled in just one year, jumping from 24% in 2021 to 55% in the 2022 survey issued by identity and access management technology provider Okta.<\/p>\n<p>And that 55% is more than three times the figure it was four years ago; when Okta first asked security leaders whether they had a zero-trust initiative in place or were planning one within the following 18 months for its 2018 report, only 16% answered yes.<\/p>\n<p>The growing use of zero trust mirrors the increasing security challenges faced by enterprise leaders. Organizations have seen their attack surfaces grow, especially as they have enabled widescale remote work policies and extended the number of endpoint devices residing outside corporate walls. At the same time, the volume and velocity of cyberattacks have skyrocketed.<\/p>\n<p>\u201cThe technology landscape is evolving, and as organizations adopted cloud and with more mobile devices and more bring-your-own devices, remote and hybrid work, and adversaries becoming more sophisticated, it all led to changes in the threat landscape. As a result, the old security model is no longer scalable,\u201d says Imran Umar, who as a senior cyber solution architect at Booz Allen Hamilton spearheads zero-trust initiatives in support of the US Department of Defense, federal civilian agencies, and the intelligence community.<\/p>\n<h2>The old perimeter security model is dead<\/h2>\n<p>That old security model focused on perimeter defenses, an approach that earned comparisons to creating a moat around the castle, working to keep out dangers while allowing everyone and everything within the castle walls to move around with few, if any, impediments.<\/p>\n<aside class=\"nativo-promo nativo-promo-1 smartphone\" id> <\/aside>\n<p>That model, though, falsely assumed users and devices within the corporate environment could be trusted. It discounted insider threats and the potential for bad actors to successfully penetrate the perimeter and disguise themselves as trusted entities that belonged within the environment.<\/p>\n<p>Moreover, that model became incompatible with a 21st-century<sup>st<\/sup> century IT architecture that, with cloud computing and an explosion of endpoint devices requiring access to enterprise systems from outside the corporate IT environment, obliterated the perimeter. Security leaders started shifting their security strategies in response to those changes. They moved away from relying mostly or solely on perimeter defenses and instead began implementing controls such as data-level authentication and encryption to secure enterprise assets at a more granular level.<\/p>\n<aside class=\"nativo-promo nativo-promo-1 tablet desktop\" id> <\/aside>\n<p>In 2010, John Kindervag, then a Forrester Research analyst (and now senior vice president of cybersecurity strategy and group fellow at ON2IT Cybersecurity), promoted the idea that an organization should not extend trust to anything inside or outside its perimeters. In that process, he created the concept of zero trust. Interest in and adoption of zero trust principles have grown steadily since.<\/p>\n<p>The White House gave zero trust an additional boost in May 2021, when in an <a href=\"https:\/\/www.whitehouse.gov\/briefing-room\/presidential-actions\/2021\/05\/12\/executive-order-on-improving-the-nations-cybersecurity\/\" rel=\"nofollow\">executive order<\/a> it declared that the federal government \u201cmust adopt security best practices\u201d and \u201cadvance toward zero-trust architecture.\u201d<\/p>\n<h2>What is zero trust?<\/h2>\n<p>At its core, zero trust is a way to think about and structure a security strategy based on the idea of \u201ctrust no one and nothing, verify everything.\u201d<\/p>\n<p>\u201cZero trust is saying: don\u2019t assume anything. Allow agents and users the least privilege and the least access they need to get their jobs done. And don\u2019t assume any privilege without verifying,\u201d says Steve Wilson, principal analyst at Constellation Research.<\/p>\n<aside class=\"nativo-promo nativo-promo-2 tablet desktop smartphone\" id> <\/aside>\n<p>Often called the zero-trust security model or the zero-trust framework, it is an approach to designing and implementing a security program based on the notion that no user or device or agent should have implicit trust. Instead, anyone or anything \u2014 a device or system \u2014 that seeks access to corporate assets must prove it should be trusted.<\/p>\n<p>\u201cIt\u2019s a philosophy. It\u2019s a mindset. It\u2019s an evolution of defense-in-depth,\u201d says Ismael Valenzuela, senior instructor at the SANS Institute, which provides security training, certifications, and research. He notes that this approach when properly implemented, not only helps prevent bad actors from gaining access to networks, systems, and data but also shortens detection and reaction times if anything nefarious gets through.<\/p>\n<p>This security model calls for implementing controls that remove implicit trust and instead require verification across multiple pillars. The number of pillars varies among the different frameworks, with most identifying either five or seven.<\/p>\n<h2>The pillars of zero trust<\/h2>\n<p>The five-pillar framework typically lists the individual pillars as:<\/p>\n<aside class=\"nativo-promo nativo-promo-3 tablet desktop smartphone\" id> <\/aside>\n<ol>\n<li>Identity,<\/li>\n<li>Device,<\/li>\n<li>Network,<\/li>\n<li>Application workload and<\/li>\n<li>&nbsp;<\/li>\n<\/ol>\n<p>The US Cybersecurity &amp; Infrastructure Security Agency, better known as CISA, <a href=\"https:\/\/www.cisa.gov\/sites\/default\/files\/publications\/CISA%20Zero%20Trust%20Maturity%20Model_Draft.pdf\" rel=\"nofollow\">uses five pillars in its maturity model<\/a>.<\/p>\n<p>Others list seven pillars. Forrester, for one, introduced its Zero Trust eXtended Ecosystem concept in 2018, identifying the seven core pillars of zero trust as:<\/p>\n<ol>\n<li>Workforce security,<\/li>\n<li>Device security,<\/li>\n<li>Workload security,<\/li>\n<li>Network security,<\/li>\n<li>Data security,<\/li>\n<li>Visibility and analytics, and<\/li>\n<li>Automation and orchestration.<\/li>\n<\/ol>\n<p>Others, including security technology vendors, offer additional variations on these pillars, some listing six and others giving alternative names such as \u201cmonitor and remediate\u201d and \u201cendpoint protection.\u201d<\/p>\n<p>Some also describe various areas as specifically \u201czero trust,\u201d as in zero-trust architecture (ZTA) and zero-trust network access (ZTNA) \u2014 terms that indicate that zero-trust principles have been applied to those parts of the IT infrastructure. Regardless of such differences, experts stress that the objective remains the same: to remove implicit trust throughout the environment and instead use processes, policies, and technologies to continuously authenticate and authorize entities as trustworthy before actually granting access.<\/p>\n<h2>The zero-trust journey<\/h2>\n<p>Removing that implicit trust takes time, according to experts, and most organizations are far from accomplishing that objective. \u201cIt\u2019s a journey of change,\u201d says Chalan Aras, a member of the Cyber &amp; Strategic Risk practice at Deloitte Risk &amp; Financial Advisory.<\/p>\n<p>Zero trust is also a collection of policies, procedures, and technologies. Organizations that want to implement an effective zero-trust strategy must have an accurate inventory of assets, including data. They must have an accurate inventory of users and devices as well as a robust data classification program with privileged access management in place, Valenzuela says.<\/p>\n<p>Other components include comprehensive identity management, application-level access control, and micro-segmentation (which helps control access and limit movement within the IT environment).<\/p>\n<p>Another important element is user and entity behavior analytics, which uses automation and intelligence to learn normal (and therefore accepted and trusted) user and entity behaviors from anomalous behaviors that shouldn\u2019t be trusted and therefore denied access.<\/p>\n<p>Other technologies for zero trust include network detection and response (NDR) tools, endpoint detection and response (EDR) solutions, and multifactor authentication capabilities.<\/p>\n<h2>Challenges to implementing zero trust<\/h2>\n<p>This plethora of policies, procedures and technologies required to enable a zero-trust strategy can be an obstacle for many organizations, Valenzuela says. Another challenge to success: <a href=\"https:\/\/www.csoonline.com\/article\/3675293\/how-legacy-tech-impedes-zero-trust-and-what-to-do-about-it.html\">legacy technology<\/a>, as older systems often can\u2019t work with or support the elements of a zero-trust security model.<\/p>\n<p>Financial constraints and resistance to change are additional barriers. Organizations generally can\u2019t afford to replace existing security technologies and modernize legacy tech all at once, nor can they successfully manage to move workers to new policies and procedures in one fell swoop. \u201cThere are a lot of investments that have been made over the years that you cannot just throw away,\u201d Valenzuela says.<\/p>\n<p>Yet another challenge is the user pushback that zero trust will inevitably bring into the environment, Wilson says, adding that \u201czero trust raises friction, and friction is the enemy of the user experience.\u201d<\/p>\n<p>Wilson cites one more challenge to overcome: the additional complexity that zero trust brings. Most organizations are in the earlier stages of implementing the controls required to enable this approach and few have reached full maturity. The 2022 Okta report, for example, indicates that only 2% of all companies worldwide have implemented passwordless access indicating that their zero-trust maturity is \u201cevolved,\u201d or the highest maturity level of the five levels listed by Okta.<\/p>\n<h2>Implement zero trust in stages<\/h2>\n<p>Given the scope of work that zero trust involves, and the challenges that come with it, experts advise moving forward in steps. \u201cThe goal should be: What can I do today, this week, this month to implement less implicit trust?\u201d Valenzuela says.<\/p>\n<p>Similarly, Aras says he advises enterprise leaders to break down their zero-trust journeys into three buckets: do now, do next, and do later. He puts, for example, identity initiatives into the \u201cdo now\u201d category as well as ZTNA, \u201cwhere depending on how old the tech stack is, it could be a minor change or it could be a major change.\u201d<\/p>\n<p>He says network segmentation and application segmentation could be \u201cdo now\u201d or \u201cdo next\u201d activities, depending on an organization\u2019s existing security and tech maturity. \u201cIt\u2019s important to start with where am I now? The better that [analysis] is performed, the more likely the \u2018do now,\u2019 \u2018do next\u2019 and \u2018do later\u2019 recommendations will be accurate.\u201d<\/p>\n<div class=\"end-note\"> <!-- blx4 #2004 blox4.html --> <\/p>\n<div id class=\"blx blxParticleendnote blxM2004 blox4_html blxC51120\">\n<aside> <strong>Next read this<\/strong> <\/aside>\n<\/p><\/div>\n<\/p><\/div>\n<p> READ MORE <a href=\"https:\/\/www.csoonline.com\/article\/3247848\/what-is-zero-trust-a-model-for-more-effective-security.html#tk.rss_security\">HERE<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>As the security model becomes the preferred security strategy, it\u2019s worth looking at what it is and what it takes to achieve. READ MORE HERE&#8230;<\/p>\n","protected":false},"author":2,"featured_media":50921,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"colormag_page_layout":"default_layout","footnotes":""},"categories":[738],"tags":[3259,10409,1061,307],"class_list":["post-50920","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-networkworld","tag-access-control","tag-identity-management-solutions","tag-network-security","tag-security"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v28.0 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>What is zero trust? A model for more effective security 2026 | ThreatsHub Cybersecurity News<\/title>\n<meta name=\"description\" content=\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security &amp; Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.threatshub.org\/blog\/what-is-zero-trust-a-model-for-more-effective-security\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"What is zero trust? A model for more effective security 2026 | ThreatsHub Cybersecurity News\" \/>\n<meta property=\"og:description\" content=\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security &amp; Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.threatshub.org\/blog\/what-is-zero-trust-a-model-for-more-effective-security\/\" \/>\n<meta property=\"og:site_name\" content=\"ThreatsHub Cybersecurity News\" \/>\n<meta property=\"article:published_time\" content=\"2023-03-07T10:00:00+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/images.idgesg.net\/images\/article\/2021\/07\/conceptual_network_labeled_zero_trust_by_olivier_le_moal_shutterstock_1958585461_digital-only_license_2400x1600-100896571-large.jpg?auto=webp&amp;quality=85,70\" \/>\n<meta name=\"author\" content=\"TH Author\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@threatshub\" \/>\n<meta name=\"twitter:site\" content=\"@threatshub\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"TH Author\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"7 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/what-is-zero-trust-a-model-for-more-effective-security\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/what-is-zero-trust-a-model-for-more-effective-security\\\/\"},\"author\":{\"name\":\"TH Author\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/person\\\/12e0a8671ff89a863584f193e7062476\"},\"headline\":\"What is zero trust? A model for more effective security\",\"datePublished\":\"2023-03-07T10:00:00+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/what-is-zero-trust-a-model-for-more-effective-security\\\/\"},\"wordCount\":1504,\"publisher\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/what-is-zero-trust-a-model-for-more-effective-security\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2023\\\/03\\\/what-is-zero-trust-a-model-for-more-effective-security.jpg\",\"keywords\":[\"access control\",\"Identity Management Solutions\",\"Network Security\",\"Security\"],\"articleSection\":[\"Networkworld\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/what-is-zero-trust-a-model-for-more-effective-security\\\/\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/what-is-zero-trust-a-model-for-more-effective-security\\\/\",\"name\":\"What is zero trust? A model for more effective security 2026 | ThreatsHub Cybersecurity News\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/what-is-zero-trust-a-model-for-more-effective-security\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/what-is-zero-trust-a-model-for-more-effective-security\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2023\\\/03\\\/what-is-zero-trust-a-model-for-more-effective-security.jpg\",\"datePublished\":\"2023-03-07T10:00:00+00:00\",\"description\":\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/what-is-zero-trust-a-model-for-more-effective-security\\\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/what-is-zero-trust-a-model-for-more-effective-security\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/what-is-zero-trust-a-model-for-more-effective-security\\\/#primaryimage\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2023\\\/03\\\/what-is-zero-trust-a-model-for-more-effective-security.jpg\",\"contentUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2023\\\/03\\\/what-is-zero-trust-a-model-for-more-effective-security.jpg\",\"width\":150,\"height\":100},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/what-is-zero-trust-a-model-for-more-effective-security\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"access control\",\"item\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/tag\\\/access-control\\\/\"},{\"@type\":\"ListItem\",\"position\":3,\"name\":\"What is zero trust? A model for more effective security\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#website\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\",\"name\":\"ThreatsHub Cybersecurity News\",\"description\":\"%%focuskw%% Threat Intel \u2013 Threat Intel Services \u2013 CyberIntelligence \u2013 Cyber Threat Intelligence - Threat Intelligence Feeds - Threat Intelligence Reports - CyberSecurity Report \u2013 Cyber Security PDF \u2013 Cybersecurity Trends - Cloud Sandbox \u2013- Threat IntelligencePortal \u2013 Incident Response \u2013 Threat Hunting \u2013 IOC - Yara - Security Operations Center \u2013 SecurityOperation Center \u2013 Security SOC \u2013 SOC Services - Advanced Threat - Threat Detection - TargetedAttack \u2013 APT \u2013 Anti-APT \u2013 Advanced Protection \u2013 Cyber Security Services \u2013 Cybersecurity Services -Threat Intelligence Platform\",\"publisher\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\"},\"alternateName\":\"Threatshub.org\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\",\"name\":\"ThreatsHub.org\",\"alternateName\":\"Threatshub.org\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/05\\\/Threatshub_Favicon1.jpg\",\"contentUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/05\\\/Threatshub_Favicon1.jpg\",\"width\":432,\"height\":435,\"caption\":\"ThreatsHub.org\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\"},\"sameAs\":[\"https:\\\/\\\/x.com\\\/threatshub\"]},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/person\\\/12e0a8671ff89a863584f193e7062476\",\"name\":\"TH Author\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"caption\":\"TH Author\"}}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"What is zero trust? A model for more effective security 2026 | ThreatsHub Cybersecurity News","description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.threatshub.org\/blog\/what-is-zero-trust-a-model-for-more-effective-security\/","og_locale":"en_US","og_type":"article","og_title":"What is zero trust? A model for more effective security 2026 | ThreatsHub Cybersecurity News","og_description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","og_url":"https:\/\/www.threatshub.org\/blog\/what-is-zero-trust-a-model-for-more-effective-security\/","og_site_name":"ThreatsHub Cybersecurity News","article_published_time":"2023-03-07T10:00:00+00:00","og_image":[{"url":"https:\/\/images.idgesg.net\/images\/article\/2021\/07\/conceptual_network_labeled_zero_trust_by_olivier_le_moal_shutterstock_1958585461_digital-only_license_2400x1600-100896571-large.jpg?auto=webp&amp;quality=85,70","type":"","width":"","height":""}],"author":"TH Author","twitter_card":"summary_large_image","twitter_creator":"@threatshub","twitter_site":"@threatshub","twitter_misc":{"Written by":"TH Author","Est. reading time":"7 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.threatshub.org\/blog\/what-is-zero-trust-a-model-for-more-effective-security\/#article","isPartOf":{"@id":"https:\/\/www.threatshub.org\/blog\/what-is-zero-trust-a-model-for-more-effective-security\/"},"author":{"name":"TH Author","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/12e0a8671ff89a863584f193e7062476"},"headline":"What is zero trust? A model for more effective security","datePublished":"2023-03-07T10:00:00+00:00","mainEntityOfPage":{"@id":"https:\/\/www.threatshub.org\/blog\/what-is-zero-trust-a-model-for-more-effective-security\/"},"wordCount":1504,"publisher":{"@id":"https:\/\/www.threatshub.org\/blog\/#organization"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/what-is-zero-trust-a-model-for-more-effective-security\/#primaryimage"},"thumbnailUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2023\/03\/what-is-zero-trust-a-model-for-more-effective-security.jpg","keywords":["access control","Identity Management Solutions","Network Security","Security"],"articleSection":["Networkworld"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/www.threatshub.org\/blog\/what-is-zero-trust-a-model-for-more-effective-security\/","url":"https:\/\/www.threatshub.org\/blog\/what-is-zero-trust-a-model-for-more-effective-security\/","name":"What is zero trust? A model for more effective security 2026 | ThreatsHub Cybersecurity News","isPartOf":{"@id":"https:\/\/www.threatshub.org\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.threatshub.org\/blog\/what-is-zero-trust-a-model-for-more-effective-security\/#primaryimage"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/what-is-zero-trust-a-model-for-more-effective-security\/#primaryimage"},"thumbnailUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2023\/03\/what-is-zero-trust-a-model-for-more-effective-security.jpg","datePublished":"2023-03-07T10:00:00+00:00","description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","breadcrumb":{"@id":"https:\/\/www.threatshub.org\/blog\/what-is-zero-trust-a-model-for-more-effective-security\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.threatshub.org\/blog\/what-is-zero-trust-a-model-for-more-effective-security\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.threatshub.org\/blog\/what-is-zero-trust-a-model-for-more-effective-security\/#primaryimage","url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2023\/03\/what-is-zero-trust-a-model-for-more-effective-security.jpg","contentUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2023\/03\/what-is-zero-trust-a-model-for-more-effective-security.jpg","width":150,"height":100},{"@type":"BreadcrumbList","@id":"https:\/\/www.threatshub.org\/blog\/what-is-zero-trust-a-model-for-more-effective-security\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.threatshub.org\/blog\/"},{"@type":"ListItem","position":2,"name":"access control","item":"https:\/\/www.threatshub.org\/blog\/tag\/access-control\/"},{"@type":"ListItem","position":3,"name":"What is zero trust? A model for more effective security"}]},{"@type":"WebSite","@id":"https:\/\/www.threatshub.org\/blog\/#website","url":"https:\/\/www.threatshub.org\/blog\/","name":"ThreatsHub Cybersecurity News","description":"%%focuskw%% Threat Intel \u2013 Threat Intel Services \u2013 CyberIntelligence \u2013 Cyber Threat Intelligence - Threat Intelligence Feeds - Threat Intelligence Reports - CyberSecurity Report \u2013 Cyber Security PDF \u2013 Cybersecurity Trends - Cloud Sandbox \u2013- Threat IntelligencePortal \u2013 Incident Response \u2013 Threat Hunting \u2013 IOC - Yara - Security Operations Center \u2013 SecurityOperation Center \u2013 Security SOC \u2013 SOC Services - Advanced Threat - Threat Detection - TargetedAttack \u2013 APT \u2013 Anti-APT \u2013 Advanced Protection \u2013 Cyber Security Services \u2013 Cybersecurity Services -Threat Intelligence Platform","publisher":{"@id":"https:\/\/www.threatshub.org\/blog\/#organization"},"alternateName":"Threatshub.org","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.threatshub.org\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.threatshub.org\/blog\/#organization","name":"ThreatsHub.org","alternateName":"Threatshub.org","url":"https:\/\/www.threatshub.org\/blog\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/logo\/image\/","url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2025\/05\/Threatshub_Favicon1.jpg","contentUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2025\/05\/Threatshub_Favicon1.jpg","width":432,"height":435,"caption":"ThreatsHub.org"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/x.com\/threatshub"]},{"@type":"Person","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/12e0a8671ff89a863584f193e7062476","name":"TH Author","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","caption":"TH Author"}}]}},"_links":{"self":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts\/50920","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/comments?post=50920"}],"version-history":[{"count":0,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts\/50920\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/media\/50921"}],"wp:attachment":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/media?parent=50920"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/categories?post=50920"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/tags?post=50920"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}