Zero Trust ke mohlala oa tšireletso o entsoeng ke mohlahlobi oa mehleng oa Forrester ka selemo sa 2010. Ho tloha ka nako eo, mohlala oa "zero trust" e se e le mohopolo o tsebahalang haholo lefapheng la cybersecurity. Litlolo tsa morao-rao tse kholo tsa data li tiisa tlhoko ea hore lik'hamphani li ele hloko haholoanyane cybersecurity, mme mohlala oa Zero Trust e kanna ea ba mokhoa o nepahetseng.
Zero Trust e bua ka ho hloka ts'epo ho felletseng ho mang kapa mang - esita le basebelisi ba kahare ho sebaka. Mohlala o fana ka maikutlo a hore mosebelisi e mong le e mong kapa sesebelisoa se tlameha ho netefatsa data ea bona nako le nako ha ba kopa ho fumana lisebelisoa tse itseng kahare kapa kantle ho marang-rang.
Tsoela pele ho bala haeba u batla ho ithuta haholoanyane ka mohopolo oa ts'ireletso ea Zero Trust.
Kamoo Zero Trust e sebetsang kateng
Mohopolo oa Zero Trust o fetohile mokhoa o akaretsang oa cybersecurity o kenyelletsang mahlale a mangata le lits'ebetso. Sepheo sa mofuta oa zero trust ke ho sireletsa k'hamphani litšokelong tsa kajeno tsa cybersecurity le litlolo tsa data ha e ntse e fihlela ho latela melaoana ea ts'ireletso le ts'ireletso ea data.
Ha re hlahlobeng lintlha tsa mantlha tsa mohopolo oa Zero Trust. Forrester o khothalletsa hore mekhatlo e ele hloko e 'ngoe le e' ngoe ea lintlha tsena e le ho haha leano le molemo ka ho fetisisa la "zero trust".
Lintlha tsa Zero Trust: Lintlha tsa hau ke tseo bahlaseli ba lekang ho li utsoa. Ka hona, hoa utloahala hore motheo oa pele oa mohopolo oa "zero trust" ke . Sena se bolela ho khona ho sekaseka, ho sireletsa, ho hlophisa, ho sala morao le ho boloka ts'ireletso ea data ea hau ea khoebo.
Zero Trust Networks: Ho utsoa tlhahisoleseding, bahlaseli ba tlameha ho khona ho tsamaea ka har'a marang-rang, kahoo mosebetsi oa hau ke ho etsa hore ts'ebetso ena e be thata ka hohle kamoo ho ka khonehang. Arola, arola, 'me u laole marang-rang a hau ka litheknoloji tsa morao-rao tse kang li-firewall tsa moloko o latelang tse etselitsoeng morero ona.
Basebelisi ba Zero Trust: Batho ke bona ba fokolang ka ho fetisisa leanong la ts'ireletso. Thibela, beha leihlo le ho tiisa hore na basebelisi ba fumana lisebelisoa joang ka har'a marang-rang le Marang-rang. Theha li-VPN, li-CASB (Secure Cloud Access Brokers), le likhetho tse ling tsa phihlello ho sireletsa basebetsi ba hau.
Laola Zero Trust: Poleloana e reng mosebetsi o boima e sebelisoa ke litšebeletso tsa litšebeletso tsa motheo le lihlopha tsa taolo ho bua ka stack eohle ea kopo le software ea morao-rao eo bareki ba hao ba e sebelisang ho sebelisana le khoebo. 'Me lits'ebetso tsa bareki tse sa ngolisoang ke vector e tloaelehileng ea tlhaselo e hlokang ho sireletsoa ho eona. Tšoara thepa eohle ea theknoloji, ho tloha ho hypervisor ho ea ho web frontend, e le ts'oaetso ea ts'oaetso 'me u e sireletse ka lisebelisoa tsa zero-trust.
Lisebelisoa tsa Zero Trust: Ka lebaka la ho phahama ha Inthanete ea Lintho (li-smartphone, lithelevishene tse bohlale, baetsi ba kofi ba bohlale, joalo-joalo), palo ea lisebelisoa tse phelang ka har'a marang-rang a hau e eketsehile haholo lilemong tse 'maloa tse fetileng. Lisebelisoa tsena hape ke vector e ka hlaselang, ka hona li lokela ho aroloa le ho beoa leihlo joalo ka komporo efe kapa efe marang-rang.
Pono le analytics: Ho atleha ho kenya ts'epo ea letho, fa lihlopha tsa hau tsa ts'ireletso le tse arabelang liketsahalo lisebelisoa tsa ho bona tsohle tse etsahalang marang-rang a hau, hammoho le litlhahlobo ho utloisisa se etsahalang. le analytics ke lintlha tsa bohlokoa ntoeng e atlehileng khahlanong le litšokelo leha e le life tse ka bang teng marang-rang.
Automation le taolo: E thusa ho boloka lits'ebetso tsohle tsa hau tsa zero li ntse li sebetsa le ho beha leihlo maano a Zero Trust. Batho ha ba khone ho boloka tlaleho ea bongata ba liketsahalo tse hlokahalang bakeng sa molao-motheo oa "zero trust".
Melao-motheo e 3 ea Mohlala oa Zero Trust
Batla phihlello e sireletsehileng le e netefalitsoeng ea lisebelisoa tsohle
Molao-motheo oa pele oa mohopolo oa Zero Trust ke litokelo tsohle tsa ho fihlella mehloling eohle. Nako le nako ha mosebelisi a fumana sesebelisoa sa faele, sesebelisoa kapa polokelo ea leru, hoa hlokahala ho netefatsa hape le ho fana ka tumello ea mosebelisi ho sesebelisoa sena.
U tlameha ho nahana e mong le e mong ho leka ho fihlella marang-rang a hau e le tšokelo ho fihlela ho pakoa ka tsela e fapaneng, ho sa tsotelehe mohlala oa hau oa ho amohela le hore na khokahano e tsoa hokae.
Sebelisa mokhoa o fokolang haholo le ho laola phihlello
ke paradigm ea ts'ireletso e fokotsang litokelo tsa phihlello tsa mosebelisi e mong le e mong maemong a hlokahalang hore a phethe mesebetsi ea hae. Ka ho thibela ho fihlella ho mosebeletsi e mong le e mong, u thibela mohlaseli ho fumana palo e kholo ea mahapu ka ho senya akhaonto e le 'ngoe.
Sebelisa ho fumana monyetla o fokolang le ho fa beng ba likhoebo bokhoni ba ho laola litumello ho data ea bona tlas'a taolo ea bona. Etsa tlhahlobo ea ho tšoaneleha le litho tsa sehlopha khafetsa.
Latela tsohle
Melao-motheo ea "zero trust" e bolela taolo le netefatso ea tsohle. Ho kenya mohala o mong le o mong oa marang-rang, phihlello ea faele, kapa molaetsa oa lengolo-tsoibila bakeng sa tlhahlobo bakeng sa ts'ebetso e mpe ha se ntho eo motho a le mong kapa sehlopha sohle se ka se fihlelang. Kahoo sebelisa holim'a likutu tse bokeletsoeng ho bona habonolo lits'oso ho marang-rang a hau joalo ka , malware, kapa phihlello ea data e patehileng.
Phethahatso ea mohlala oa "zero trust".
Ha re khethe tse 'maloa likhothaletso tsa bohlokoa ha o kenya tšebetsong mohlala oa "zero trust":
- Ntlafatsa karolo e 'ngoe le e 'ngoe ea leano la hau la ts'ireletso ea tlhahisoleseling hore e tsamaisane le melaoana ea Zero Trust: Lekola likarolo tsohle tsa leano la hau la hajoale khahlano le melao-motheo ea zero e hlalositsoeng ka holimo 'me u lokise ha ho hlokahala.
- Sekaseka stack ea hau ea theknoloji 'me u bone hore na e hloka ho ntlafatsoa kapa ho nkeloa sebaka ho fihlela Zero Trust: hlahloba le baetsi ba theknoloji e sebelisoang mabapi le ho latela melao-motheo ea "zero trust". Ikopanye le barekisi ba bacha bakeng sa litharollo tse ling tse ka hlokoang ho kenya tšebetsong leano la Zero Trust.
- Latela molao-motheo oa mokhoa o hlophisitsoeng le o etsoang ka boomo ha o kenya tšebetsong Zero Trust: ipehela lipakane tse ka lekanyetsoang le lipakane tseo u ka li finyellang. Etsa bonnete ba hore bafani ba tharollo e ncha ba boetse ba lumellana le leano le khethiloeng.
Zero Trust Model: Tšepa Basebelisi ba Hao
Mohlala oa "zero trust" ke ntho e fosahetseng, empa "ho se lumele letho, netefatsa ntho e 'ngoe le e' ngoe" ka lehlakoreng le leng ha e utloahale e le ntle hakaalo. U hlile u hloka ho tšepa basebelisi ba hau haeba ('me ke ntho e kholo "haeba") ba fetile boemo bo lekaneng ba tumello mme lisebelisoa tsa hau tsa ho beha leihlo ha lia ka tsa senola letho le belaetsang.
Leano la ts'epo ea Zero le Varonis
Ka ho kenya ts'ebetsong molao-motheo oa Zero Trust, Varonis e lumella mokhoa oa ho tsepamisa maikutlo ho bareki. tshireletso ya data:
- Varonis e hlahloba litumello le sebopeho sa foldara bakeng sa phihlello , khiro ea beng ba data ea khoebo le taolo ya ditokelo tsa phihlello ke beng ka bo bona.
- Varonis e sekaseka dikahare mme e hlwaya datha tsa bohlokwa ho eketsa karolo e eketsehileng ea tšireletso le ho beha leihlo tlhahisoleseding ea bohlokoa ka ho fetisisa, le ho lumellana le litlhoko tsa molao.
- Varonis e beha leihlo le ho sekaseka phihlello ea lifaele, ts'ebetso ho Active Directory, VPN, DNS, Proxy le mangolo etsoe boits'oaro ba mosebelisi e mong le e mong marang-rang a hau.
e bapisa ts'ebetso ea hajoale le mohlala o tloaelehileng oa boits'oaro ho tsebahatsa ts'ebetso e belaetsang mme e hlahisa ketsahalo ea ts'ireletso e nang le likhothaletso bakeng sa mehato e latelang bakeng sa ts'okelo e 'ngoe le e 'ngoe e fumanoeng. - Varonis e fana moralo oa ho beha leihlo, ho hlophisa, ho laola litumello le ho tseba litšokelo, e hlokahalang ho kenya ts'ebetsong molao-motheo oa "zero trust" marang-rang a hau.
Ke Hobane'ng ha Mohlala oa Zero Trust?
Leano la Zero Trust le fana ka karolo ea bohlokoa ea tšireletso khahlano le litlolo tsa data le litšokelo tsa sejoale-joale tsa cyber. Sohle se hlokahalang hore bahlaseli ba kenelle marang-rang a hau ke nako le tšusumetso. Ha ho li-firewall kapa maano a password a tla li emisa. Hoa hlokahala ho haha litšitiso tsa ka hare le ho shebella ntho e 'ngoe le e' ngoe e etsahalang e le hore u tsebe ho tseba liketso tsa bona ha u qhekelloa.
Source: www.habr.com