Zero Trust Network Access. The principle of managing security between a user and a resource, rather than a user and a perimeter. By Identifying the user, providing Authorisation in the network, and then remote access to individual resources, we increase security and simplify at the same time. But, did you know you can do this with 0 inbound connections open? Nothing. No ports open to see on a pentest, on nmap, on Shodan. How? In this video I explain. In a nutshell, the resource makes a permanent outbound connection to the cloud. The user makes an outbound connection to the same cloud. Identity is confirmed, Authorisation is confirmed. The connections are stitched together. Simple and secure, no reconfiguration of firewalls. No client VPN software.
Recent Articles
-
Quis custodiet ipsos custodes: When Good Firewalls Go Bad
-
CISA: 8 Top Cyber Actions for Securing Water Systems
-
Three Strategies To Help: Cisco ASA AnyConnect and WebVPN added to CISA Known Exploits
-
Multiple Connections Inbound Access Challenge
-
Ground Hog Day: Fortinet VPN Edition
-
Dutch Defence Detail Dastardly Dirty Deed