DEV Community

Cover image for What is Zero Trust Security?
Pomerium profile image Nick Taylor
Nick Taylor Subscriber for Pomerium

Posted on

5 1

What is Zero Trust Security?

#zerotrust #security

What is zero trust? I like to use an airport analogy to convey the concept.

Think about airport security. Traditional perimeter-based security, like a virtual private network (VPN), is like showing your ID to security, not your bags or anything else, and then you're in never to be checked again. You could walk to a gate and say you're the pilot. Not great, right?

The Foo Fighters as captains of an airplane

Zero Trust security takes a different approach - more like how airports actually work. No boarding pass? You'll need to verify who you are at the ticket counter first. Got your pass? Great, but it isn't a free pass to wander - it only works for your specific flight, at your specific gate, at the right time. This matches how an identity aware proxy works in Zero Trust security.

Let's take a look at a real world situation, production access. Just because you're an engineer doesn't mean you get 24/7 access to production. You might only get elevated permissions during your on-call shifts. So the context here isn't just who you are, but when you're allowed to access a resource.

Here's the big difference: old-school perimeter security is binary - you're either in or out. Zero Trust keeps asking:

  • Are you who you claim to be?
  • Are you where you're supposed to be?
  • Is this the right time for your access?
  • Does your current context justify this access level?

Zero Trust doesn't mean no trust - it's about being precise with access. Right person, right access, right time, right context.

Context matters and always be verifying.

Photo by Icarus Chu on Unsplash

Sentry
 Promoted

Sentry image

Hands-on debugging session: instrument, monitor, and fix

Join Lazar for a hands-on session where you’ll build it, break it, debug it, and fix it. You’ll set up Sentry, track errors, use Session Replay and Tracing, and leverage some good ol’ AI to find and fix issues fast.

RSVP here →

Top comments (1)

Collapse
 
cheetah100 profile image
Peter Harrison

Are your employees a bunch of liars and thieves? We have the technology for you!

Zero Trust

With this technology we will place barcodes on their forehead and monitor everywhere they go. And I mean everywhere!

We will track every mouse move and key press, feeding it to our central AI which will make automatic deductions from employee pay if they do something non business related. For a small monthly upgrade we can also have the AI determine when employees should be terminated. Security will be called and they will be ejected from the building in minutes. No uncomfortable meetings informing employees of termination.

You can't be too safe.

Get Zero Trust Today!

Coherence
 Promoted

Billboard image

The Next Generation Developer Platform

Coherence is the first Platform-as-a-Service you can control. Unlike "black-box" platforms that are opinionated about the infra you can deploy, Coherence is powered by CNC, the open-source IaC framework, which offers limitless customization.

Learn more

Read next

vivekyadav200988 profile image

Creating an NPM Package with a Sample Library and App Project

Vivek Yadav -

andychiare profile image

Securing Blazor in All Its Flavors

Andrea Chiarelli -

linwangg profile image

Why Developers Struggle to Make Money with Apps (And How to Fix It)

Lin Wang -

drishti1920 profile image

Micro Frontends Architecture

Drishti Saraf -