零信任架构的回望与未来发展研究OA北大核心CSTPCD
A Retrospective and Future Development Study of Zero Trust Architecture
随着互联网、大数据和云计算的快速发展,为了应对现代数字化的挑战,零信任架构作为一种新的安全范式被提出.该安全模型建立在从不默认信任任何内部或外部请求的原则上,强调必须通过持续的验证和监控授予访问权限.零信任的核心原则包括全面身份验证、访问控制、最小权限、普遍加密和持续的风险评估与应对.主要通过对零信任架构的发展历史进行回顾,以及对零信任机制的基本概念进行阐述,最后对零信任架构未来的发展进行总结.
With the rapid development of the internet,big data,and cloud computing,the zero trust architecture has been proposed as a new security paradigm to address the challenges of modern digitalization.This security model is built on never inherently trusting any internal or external requests,emphasizing that access must be granted through constant verification and monitoring.The core principles of zero trust include comprehensive identity verification,access control,least privilege,pervasive encryption,and continuous risk assessment and response.This article primarily reviews the development history of zero trust architecture,elaborates on the basic concepts of the zero zrust mechanism,and finally summarizes the future development of zero trust architecture.
王若晗;向继;管长御;王雷
中国科学院信息工程研究所 北京 100092||中国科学院大学网络空间安全学院 北京 100049
计算机与自动化
零信任零信任架构零信任机制云计算网络空间安全
zero trustzero trust architecturezero trust mechanismcloud computingcyber security
《信息安全研究》 2024 (010)
896-902 / 7
国家自然科学基金项目(62272455)
评论