Zero Trust ndi njira yachitetezo yopangidwa ndi katswiri wakale wa Forrester mu 2010 chaka. Kuyambira pamenepo, "zero trust" yakhala lingaliro lodziwika kwambiri pazachitetezo cha cybersecurity. Kuphwanya kwakukulu kwaposachedwa kwa data kumangotsimikizira kufunikira kwamakampani kuti azisamalira kwambiri chitetezo cham'manja, ndipo chitsanzo cha Zero Trust chingakhale njira yoyenera.
Zero Trust imatanthawuza kusakhulupirika kwathunthu mwa aliyense - ngakhale ogwiritsa ntchito mkati mozungulira. Chitsanzocho chikutanthauza kuti wogwiritsa ntchito aliyense kapena chipangizocho chiyenera kutsimikizira deta yake nthawi zonse pamene apempha kupeza zinthu zina mkati kapena kunja kwa intaneti.
Werengani ngati mukufuna kudziwa zambiri za lingaliro la chitetezo cha Zero Trust.
Momwe Zero Trust imagwirira ntchito
Lingaliro la Zero Trust lasintha kukhala njira yolumikizirana ndi cybersecurity yomwe imaphatikizapo matekinoloje angapo ndi njira. Cholinga cha chitsanzo cha zero trust ndikuteteza kampani ku ziwopsezo zamasiku ano za cybersecurity ndi kuphwanya kwa data ndikukwaniritsanso kutsata malamulo otetezedwa ndi chitetezo.
Tiyeni tiwone mbali zazikulu za lingaliro la Zero Trust. Forrester amalimbikitsa kuti mabungwe azisamalira chilichonse mwa mfundozi kuti apange njira yabwino kwambiri ya "zero trust".
Zero Trust Data: Deta yanu ndi yomwe akuukira akuyesera kuba. Chifukwa chake, ndizomveka kuti maziko oyamba a lingaliro la "zero trust" ndi . Izi zikutanthauza kutha kusanthula, kuteteza, kugawa, kutsatira ndi kusunga chitetezo cha data yanu yakampani.
Zero Trust Networks: Kuti abe zambiri, owukira ayenera kusuntha mkati mwa netiweki, kotero ntchito yanu ndikupangitsa kuti izi zikhale zovuta momwe mungathere. Gawani, patulani, ndikuwongolera maukonde anu ndi umisiri wamakono monga zozimitsa moto za m'badwo wotsatira zomwe zidapangidwira izi.
Ogwiritsa Ntchito Zero Trust: Anthu ndi omwe ali ofooka kwambiri mu njira yachitetezo. Limbikitsani, kuyang'anira ndi kutsimikizira mosamalitsa momwe ogwiritsa ntchito amapezera zothandizira pa intaneti ndi intaneti. Konzani ma VPN, ma CASB (Safe Cloud Access Brokers), ndi njira zina zopezera kuti muteteze antchito anu.
Kwezani Zero Trust: Mawu akuti kuchuluka kwa ntchito amagwiritsidwa ntchito ndi magulu achitetezo ndi magulu owongolera kutanthauza pulogalamu yonse ya pulogalamu ndi pulogalamu yobwezeretsa yomwe makasitomala anu amagwiritsa ntchito polumikizana ndi bizinesi. Ndipo mapulogalamu a kasitomala omwe sanatumizidwe ndi vector wamba omwe amafunika kutetezedwa. Chitani zonse zaukadaulo, kuyambira pa hypervisor mpaka pa intaneti, ngati chowopsa ndikuchiteteza ndi zida za zero-trust.
Zero Trust Devices: Chifukwa cha kukwera kwa intaneti ya Zinthu (mafoni a m'manja, ma TV anzeru, opanga khofi anzeru, ndi zina zotero), kuchuluka kwa zida zomwe zikukhala mkati mwamanetiweki anu chakwera kwambiri pazaka zingapo zapitazi. Zidazi zilinso ndi zida zowukira, chifukwa chake ziyenera kugawidwa ndikuwunikidwa ngati kompyuta ina iliyonse pamaneti.
Kuwona ndi kusanthula: Kuti mugwiritse ntchito bwino zero trust, perekani gulu lanu lachitetezo ndi mayankho zida zida zowonera zonse zomwe zikuchitika pa netiweki yanu, komanso ma analytics kuti amvetsetse zomwe zikuchitika. ndi analytics ndi mfundo zofunika pankhondo yopambana yolimbana ndi ziwopsezo zilizonse pa intaneti.
Automation ndi control: Imathandiza kuti machitidwe anu onse a zero akhazikike ndikuyang'anira mfundo za Zero Trust. Anthu sangathe kutsata kuchuluka kwa zochitika zomwe zimafunikira pa mfundo ya "zero trust".
Mfundo zitatu za Zero Trust Model
Fufuzani mwayi wotetezedwa ndi wotsimikiziridwa kuzinthu zonse
Mfundo yoyamba ya lingaliro la Zero Trust ndi maufulu onse opezeka kuzinthu zonse. Nthawi iliyonse wogwiritsa ntchito akapeza gwero la mafayilo, kugwiritsa ntchito kapena kusungirako mitambo, ndikofunikira kutsimikiziranso ndikuvomereza wogwiritsa ntchitoyo kuzinthu izi.
Muyenera kuganizira aliyense kuyesera kulumikiza maukonde anu ngati chiwopsezo mpaka kutsimikiziridwa mwanjira ina, mosasamala kanthu za mtundu wanu wokhala nawo komanso komwe kulumikizana kumachokera.
Gwiritsani ntchito mwayi wocheperako ndikuwongolera mwayi
ndi paradigm yachitetezo yomwe imachepetsa ufulu wofikira kwa wogwiritsa ntchito aliyense pamlingo womwe ukufunika kuti achite ntchito zake. Poletsa mwayi kwa wogwira ntchito aliyense, mumalepheretsa woukira kuti asapeze mavwende ambiri posokoneza akaunti imodzi.
Gwiritsani ntchito kupeza mwayi wocheperako ndikupatsa eni mabizinesi kuthekera kosamalira zilolezo pa data yawo pansi pawoyang'anira. Chitani kuyenerera ndi ndemanga za umembala wamagulu pafupipafupi.
Tsatani chilichonse
Mfundo za "zero trust" zimatanthawuza kuwongolera ndi kutsimikizira chilichonse. Kulowetsa ma foni amtaneti aliwonse, mwayi wofikira mafayilo, kapena uthenga wa imelo kuti muwunike ntchito zoyipa sizinthu zomwe munthu m'modzi kapena gulu lonse lingachite. Choncho ntchito pazipika zomwe zasonkhanitsidwa kuti muwone mosavuta zowopseza pa intaneti yanu monga , pulogalamu yaumbanda, kapena kusefa kwachinsinsi.
Kukhazikitsa chitsanzo cha "zero trust".
Tiyeni tisankhepo ochepa malingaliro ofunikira mukamagwiritsa ntchito chitsanzo cha "zero trust":
- Sinthani mbali zonse zachitetezo cha chidziwitso chanu kuti zigwirizane ndi mfundo za Zero Trust: Yang'anani mbali zonse za njira yanu yapano motsutsana ndi mfundo zodalirika za zero zomwe zafotokozedwa pamwambapa ndikusintha ngati kuli kofunikira.
- Yang'anani kuchuluka kwaukadaulo wanu ndikuwona ngati ikufunika kukwezedwa kapena kusinthidwa kuti mukwaniritse Zero Trust: fufuzani ndi omwe amapanga matekinoloje omwe amagwiritsidwa ntchito ponena za kutsata kwawo mfundo za "zero trust". Pezani mavenda atsopano kuti mupeze mayankho owonjezera omwe angafunike kuti mugwiritse ntchito njira ya Zero Trust.
- Tsatirani mfundo yadongosolo komanso mwadala pokhazikitsa Zero Trust: khalani ndi zolinga zomwe mungathe kuzikwaniritsa. Onetsetsani kuti opereka mayankho atsopano akugwirizananso ndi njira yosankhidwa.
Zero Trust Model: Khulupirirani Ogwiritsa Ntchito Anu
Mtundu wa "zero trust" ndi wolakwika pang'ono, koma "musakhulupirire chilichonse, tsimikizirani chilichonse" kumbali inayo sizikumveka bwino. Muyenera kudalira ogwiritsa ntchito anu ngati (ndipo ndiye wamkulu kwambiri "ngati") adadutsa mulingo wovomerezeka ndipo zida zanu zowunikira sizinawonetse chilichonse chokayikitsa.
Zero trust mfundo ndi Varonis
Pogwiritsa ntchito mfundo ya Zero Trust, Varonis amalola kuti makasitomala azigwiritsa ntchito. chitetezo cha data:
- Varonis imayang'ana zilolezo ndi mawonekedwe a foda za kupindula , kusankhidwa kwa eni ake a data yamabizinesi ndi kasamalidwe ka ufulu wopezeka ndi eni eni eni.
- Varonis amasanthula zomwe zili ndikuzindikira deta yofunika kwambiri kuwonjezera chitetezo ndi kuwunika kuzinthu zofunika kwambiri, komanso kutsatira malamulo.
- Varonis imayang'anira ndikuwunika kuchuluka kwa mafayilo, zochitika mu Active Directory, VPN, DNS, Proxy ndi makalata chifukwa machitidwe a aliyense wogwiritsa ntchito pa intaneti yanu.
imafanizira zomwe zikuchitika pano ndi njira yodziwika bwino kuti izindikire zochitika zokayikitsa ndikupanga chochitika chachitetezo chokhala ndi malingaliro pamasitepe otsatira pachiwopsezo chilichonse chomwe chapezeka. - Varonis amapereka chimango chowunikira, kugawa, kuyang'anira zilolezo ndi kuzindikira ziwopsezo, zomwe zimafunika kuti mugwiritse ntchito mfundo ya "zero trust" pamaneti anu.
Chifukwa chiyani chitsanzo cha Zero Trust?
Njira ya Zero Trust imapereka gawo lofunikira lachitetezo pakuphwanya deta komanso ziwopsezo zamakono za cyber. Zomwe zimatengera kuti oukira alowe mumanetiweki yanu ndi nthawi komanso chilimbikitso. Palibe ma firewall kapena mfundo zachinsinsi zomwe zingawaletse. Ndikofunikira kumanga zotchinga zamkati ndikuwunika zonse zomwe zimachitika kuti adziwe zomwe akuchita atabedwa.
Source: www.habr.com