ExercisesSecurity Architecture Language › Zero-Trust Architecture

Zero-Trust Architecture

5 questions · Security Architecture Language

1. A network architecture that grants access based solely on verified identity and device health — regardless of whether the user is inside or outside the corporate network — is called:
2. The zero-trust principle 'never trust, always verify' means that even a request from inside the corporate network must:
3. In a zero-trust design, network segments are isolated so that a compromised endpoint in one segment cannot access services in other segments without re-authentication. What is this segmentation technique called?
4. The Google BeyondCorp model moved away from the corporate VPN and instead allows employees to access work applications from any network using device verification and identity authentication. What security model did Google implement?
5. In a zero-trust architecture, access control is enforced as close to the resource as possible, not at the network perimeter. This means the primary security control is:

Exercise complete!

out of 5 questions