Master zero trust security vocabulary: never trust always verify, micro-segmentation, identity-centric security, and least privilege.
0 / 5 completed
1 / 5
Zero trust architecture is based on the principle:
Zero trust eliminates the concept of a trusted internal network — every access request is validated against identity, device health, and policy, even for internal users.
2 / 5
Micro-segmentation in zero trust means:
Micro-segmentation enforces granular access between workloads — even inside the data centre. An attacker who compromises one segment cannot move freely to others.
3 / 5
The principle of 'least privilege' in zero trust requires:
Least privilege limits the blast radius of a breach — a compromised account with minimal permissions can do minimal damage compared to one with broad access.
4 / 5
In zero trust, 'continuous verification' means:
Continuous verification goes beyond session-token authentication — it evaluates risk signals throughout the session and can revoke access if behaviour becomes anomalous.
5 / 5
A Software-Defined Perimeter (SDP) in zero trust provides:
SDP makes infrastructure invisible to unauthorised users — resources are only reachable after authentication, effectively hiding them from network scanning and unauthenticated access.