For all its sophistication, the Internet age has brought on a digital plague of security breaches. The steady drumbeat of data and identity thefts spawned a new movement and a modern mantra that's even been the subject of a U.S. presidential mandate - zero trust.
So, What Is Zero Trust? Zero trust is a cybersecurity strategy for verifying every user, device, application and transaction in the belief that no user or process should be trusted.
That definition comes from the NSTAC report, a 56-page document on zero trust compiled in 2021 by the U.S. National Security Telecommunications Advisory Committee, a group that included dozens of security experts led by a former AT&T CEO.
In an interview, John Kindervag, the former Forrester Research analyst who created the term, noted that he defines it this way in his Zero Trust Dictionary: Zero trust is a strategic initiative that helps prevent data breaches by eliminating digital trust in a way that can be deployed using off-the-shelf technologies that will improve over time.
What Are the Basic Tenets of Zero Trust? In his 2010 report that coined the term, Kindervag laid out three basic tenets of zero trust. Because all network traffic should be untrusted, he said users must:
verify and secure all resources,
limit and strictly enforce access control, and
inspect and log all network traffic.
That's why zero trust is sometimes known by the motto, Never Trust, Always Verify.
How Do You Implement Zero Trust? As the definitions suggest, zero trust is not a single technique or product, but a set of principles for a modern security policy.
In its seminal 2020 report, the U.S. National Institute for Standards and Technology (NIST) detailed guidelines for implementing zero trust.
Its general approach is described in the chart above. It uses a security information and event management (SIEM) system to collect data and continuous diagnostics and mitigation (CDM) to analyze it and respond to insights and events it uncovers.
It's an example of a security plan also called a zero trust architecture (ZTA) that creates a more secure network called a zero trust environment.
But one size doesn't fit all in zero trust. There's no single deployment plan for ZTA [because each] enterprise will have unique use cases and data assets, the NIST report said.
Five Steps to Zero Trust The job of deploying zero trust can be boiled down to five main steps.
It starts by defining a so-called protect surface, what users want to secure. A protect surface can span systems inside a company's offices, the cloud and the edge.
From there, users create a map of the transactions that typically flow across their networks and a zero trust architecture to protect them. Then they establish security policies for the network.
Finally, they monitor network traffic to make sure transactions stay within the policies.
Both the NSTAC report (above) and Kindervag suggest these same steps to create a zero trust environment.
It's important to note that zero trust is a journey not a destination. Consultants and government agencies recommend users adopt a zero trust maturity model to document an organization's security improvements over time.
The Cybersecurity Infrastructure Security Agency, part of the U.S. Department of Homeland Security, described one such model (see chart below) in a 2021 document.
In practice, users in zero trust environments request access to each protected resource separately. They typically use multi-factor authentication (MFA) such as providing a password on a computer, then a code sent to a smartphone.
The NIST report lists ingredients for an algorithm (below) that determines whether or not a user gets access to a resource.
Ideally, a trust algorithm should be contextual, but this may not always be possible, given a company's resources, it said.
Some argue the quest for an algorithm to measure trustworthiness is counter to the philosophy of zero trust. Others note that machine learning has much to offer here, capturing context across many events on a network to help make sound decisions on access.
The Big Bang of Zero Trust In May 2021, President Joe Biden released an executive order mandating zero trust for the government's computing systems.
The order gave federal agencies 60 days to adopt zero trust architectures based on the NIST recommendations. It also called for a playbook on dealing with security breaches, a safety board to review major incidents - even a program to establish cybersecurity warning labels for some consumer products.
It was a big bang moment for zero trust that's still echoing around the globe.
The likely effect this had on advancing zero trust conversations within boardrooms and among information security teams cannot be overstated, the NSTAC report said.
What's the History of Zero Trust? Around 2003, ideas that led to zero trust started bubbling up inside the U.S. Department of Defense, leading to a 2007 report. About the same time, an informal group of industry security experts called the Jericho Forum coined the term de-perimeterisation.
Kindervag crystalized the concept and gave it a name in his bombshell September 2010 report.
The industry's focus on building a moat around organizations with firewalls and intrusion detection systems was wrongheaded, he argued. Bad actors and inscrutable data packets were already inside organizations, threats that demanded a radically new approach.
Security Goes Beyond Firewalls From his early days installing firewalls, I realized our trust model was a problem, he said in an interview. We took a human concept into the digital world, and it was just silly.
At Forrester, he was tasked with finding out why cybersecurity wasn't working. In 2008, he started using the term zero trust in talks describing his research.
After
Most recent headlines
04/09/2025
Monumental Sports & Entertainment (MSE), in collaboration with Dalet, has been a...
23/04/2025
In 2024, Thomson's Total Turnout project played a pivotal role in elevating ethical election reporting and strengthening journalist safety in Pakistan.
Wit...
23/04/2025
We heard that you could use a little pick-me-up, so get ready to sh-sh-shake it ...
23/04/2025
WBD's Max viewership climbs 6%, boosted by The White Lotus' and The Pi...
23/04/2025
March shows a further downward trend of time spent watching television; following the February period when winter holidays contributed to a shorter time spent. ...
23/04/2025
During March, audiences in Mexico increased their streaming usage by 2.1 points compared to the previous month, accounting for 24.4% of TV viewing.
Disclaimer:...
23/04/2025
AANHPI audiences over index the total U.S. for share of time spent with Netflix ...
23/04/2025
SAN JOSE, Calif. Roku has announced new TVs, new streaming devices and significant upgrades to its user interface and software platforms that are designed to st...
23/04/2025
COW Job Listing: Opportunity for a Passionate Feature Film Editor - London-Based...
23/04/2025
RM Equity Partners Acquires MAGIX Software, Appoints Robert Rutkowski as CEO to ...
23/04/2025
All Men Are Wicked Western Shot with Blackmagic Design
Brie Clayton April 23, 2025
0 Comments
Blackmagic Pocket Cinema Camera 4Ks were put to the test...
23/04/2025
NEW YORK Warner Bros. Discovery captured the largest monthly viewership increase among media distributors in March, according to Nielsen's latest Media Dist...
23/04/2025
MIAMI, Fla. Hemisphere Media Group has inked a deal with Samsung to launch WAPA+ as a FAST channel on Samsung TV Plus, a free TV streaming service that comes pr...
23/04/2025
HEBDEN BRIDGE, U.K. Calrec Audio has promoted Sid Stanley to managing director. Stanley, who joined the company in July 2018 as general manager, has been instru...
23/04/2025
WASHINGTON Federal Communications Commission Commissioner Nathan A. Simington has announced a series of staff appointments made in March and April 2025, includi...
23/04/2025
WASHINGTON The Federal Communications Commission has set its agenda for the Monday, April 28, 2025 Open Meeting, which is scheduled to start at 10:30 a.m. in th...
23/04/2025
COW Job Listing: Full-Time Video Editor, Remote
Brie Clayton April 22, 2025
0 Comments
Full-Time Video Editor
April 23, 2025COW Job Listing: Opportu...
23/04/2025
Berklee Abu Dhabi's Jazz Night Kicks off Global Celebration of Music and Cul...
23/04/2025
The E.W. Scripps Co. said it was shutting down its Scripps News over-the-air channel effective November 15 and eliminating at least 200 jobs....
23/04/2025
Audio Helps Chess.com Checkmate Cheating Matches are produced using REMI workflows By Dan Daley, Audio Editor
Wednesday, April 23, 2025 - 7:00 am
Print Th...
23/04/2025
Tech Focus: Intercoms, Part 1 - Key to Onsite, REMI, Hybrid Operations Intercoms keep increasingly disparate production locations together By Dan Daley, Audio ...
23/04/2025
Speaking my language: Bringing AI to the fore with real time audio translation f...
23/04/2025
Back to All News
Netflix Drops Trailer for Crime Drama Secrets We Keep, Set in ...
23/04/2025
Back to All News
World Book Day: Netflix Announces New TV Adaptations and Impac...
23/04/2025
Comscore to Announce First Quarter 2025 Financial ResultsRESTON, VA, April 23, 2025 Comscore, Inc. (Nasdaq: SCOR), a trusted partner for planning, transacting...
23/04/2025
In an email to RT staff today, RT Director-General, Kevin Backhurst confirmed that RT 's Voluntary Exit Programme (VEP) 2025 is open from today, Wednesday...
23/04/2025
RT will air live coverage on television, radio and online of the funeral of Pope Francis which takes place this Saturday, 26 April 2025.
Beginning at 8.30am o...
23/04/2025
As AI models evolve and adoption grows, enterprises must perform a delicate balancing act to achieve maximum value.
That's because inference - the process ...
23/04/2025
Financial services has long been at the forefront of adopting technological innovations. Today, generative AI and agentic systems are redefining the industry, f...
23/04/2025
Facebook
Twitter
LinkedIn
Enables Michelin to focus on development of its ...
23/04/2025
AI is rapidly reshaping what's possible on a PC - whether for real-time image generation or voice-controlled workflows. As AI capabilities grow, so does the...
23/04/2025
An AI agent is only as accurate, relevant and timely as the data that powers it....
23/04/2025
April 23 2025, 02:00 (PDT) Dolby Ushers in the Future of In-car Entertainment at Auto Shanghai 2025
Dolby and industry partners demonstrate robust momentum ...
22/04/2025
Chloe Sevigny at the Magic Farm premiere (photo by Michael Hurcomb/Shutterstock for Sundance Film Festival)...
22/04/2025
Music has the power to connect us to one another and to the world around us. Spotify is once again teaming up with the Museum for the United Nations - UN Live&#...
22/04/2025
Spotify has an unwavering commitment to supporting emerging artists across all g...
22/04/2025
This year marks the 55th anniversary of Earth Day, celebrated annually on April 22. On Spotify, listeners can explore a world of stories about our planet in our...
22/04/2025
McAvaney takes the lead for SBS' Coverage of the World Athletics Championshi...
22/04/2025
Virtual idols are poised to revolutionize entertainment, with the market projected to top $4 billion by 2029. Crafted with motion capture and game engine techno...
22/04/2025
As the audiovisual (AV) industry rapidly evolves, educational institutions are preparing the next generation of AV professionals for the future. Singapore Polyt...
22/04/2025
DENVER A new survey highlights just how important streaming has become in the entertainment landscape. Data compiled by Adtaxi shows streaming isnt just an alte...
22/04/2025
Samsung TV Plus has announced that it is now offering nearly 700 streaming channels in the U.S. more than any of the other major FAST platforms, the streaming s...
22/04/2025
PORTSMOUTH, N.H. New findings from Hub Research's latest survey on sports and television coverage reveal Amazon may have cracked the code of how to use tech...
22/04/2025
DETROIT Rockbridge Growth Equity has sold a controlling stake in GSTV to MidOcean Partners. Rockbridge will retain a minority stake in the video network which i...
22/04/2025
ATLANTA Gray Media has promoted Dana Neves to senior managing vice president, overseeing a number of Gray's television markets in the Northeast and Mid-Atla...
22/04/2025
The Infrastructure of Creative Flow: DigitalGlue's creative.space Wins NAB 2...
22/04/2025
iZotope unveils Equinox: the ultimate reverb plugin for Post and Music productio...
22/04/2025
Every way to export transparent videos from After Effects
Graham Quince April 21, 2025
0 Comments
In this video, I break down each way you can export ...
22/04/2025
April 22nd, 2025 Press Materials Available Here
Tribeca Festival 2025 Announces Short Film Lineup
Featuring How I Learned to Die Executive Produced by Osca...
For all its sophistication, the Internet age has brought on a digital plague of security breaches. The steady drumbeat of data and identity thefts spawned a new movement and a modern mantra that's even been the subject of a U.S. presidential mandate - zero trust.
