Practice vocabulary for Zero Trust security architecture including never trust always verify, microsegmentation, continuous verification, least-privilege access, and device health checks.
0 / 5 completed
1 / 5
The core principle of Zero Trust is summarized as _____.
'Never trust, always verify' is the foundational Zero Trust principle — no user, device, or network location is inherently trusted; every access request must be authenticated and authorized.
2 / 5
'Microsegmentation' in Zero Trust means _____.
Microsegmentation divides the network into isolated zones, enforcing granular access policies between them — limiting lateral movement if an attacker breaches one segment.
3 / 5
'Identity is the new perimeter' in Zero Trust means that _____.
In Zero Trust, since users work from anywhere and the network boundary is dissolving, identity verification (who you are, not where you are) becomes the primary access control boundary.
4 / 5
'Least-privilege access at every layer' means users and services are given _____.
Least privilege limits the blast radius of a compromised account or service — if an attacker gains access, they can only reach the minimal set of resources that identity was permitted to use.
5 / 5
Before a device can access corporate resources under a Zero Trust model, it must _____.
Device health checks (also called device compliance checks) verify that the endpoint meets security requirements before granting access — ensuring compromised or unpatched devices cannot reach resources.