Talk:Zero trust security model

This article is rated C-class on Wikipedia's content assessment scale. It is of interest to the following WikiProjects:

Computer Security: Computing High‑importance This article is within the scope of WikiProject Computer Security, a collaborative effort to improve the coverage of computer security on Wikipedia. If you would like to participate, please visit the project page, where you can join the discussion and see a list of open tasks.Computer SecurityWikipedia:WikiProject Computer SecurityTemplate:WikiProject Computer SecurityComputer Security articles High This article has been rated as High-importance on the project's importance scale. This article is supported by WikiProject Computing (assessed as Mid-importance). Things you can help WikiProject Computer Security with: Article alerts will be generated shortly by AAlertBot. Please allow some days for processing. More information... Answer question about Same-origin_policy Review importance and quality of existing articles Identify categories related to Computer Security Tag related articles Identify articles for creation (see also: Article requests) Identify articles for improvement Create the Project Navigation Box including lists of adopted articles, requested articles, reviewed articles, etc. Find editors who have shown interest in this subject and ask them to take a look here.

Is there any reason to link to Marsh's scholar page and not directly to his paper? https://dspace.stir.ac.uk/bitstream/1893/2010/1/Formalising%20trust%20as%20a%20computational%20concept.pdf

Also the link mentions 2020, the paper is from 1994, so it's not clear to a reader that the link is actually about the 1994 paper.

In the same way, we're missing a link to John Kindervag's paper. I found this that seems to be the official source, it's behind a paywall, I don't know if that's authorized in Wikipedia (I hope it is): https://www.forrester.com/report/no-more-chewy-centers-the-zero-trust-model-of-information-security/RES56682?src=57047pdf&docid=56682

The following pdf is freely available and is presented as "the second in a collection of reports that describe the concept, architecture, and benefits of Forrester’s Zero Trust Model of information security". Seems strange that the first one would be behind a paywall and not the second one, but what do I know. http://www.virtualstarmedia.com/downloads/Forrester_zero_trust_DNA.pdf

Jrob kiwi (talk) 09:13, 29 October 2021 (UTC)[reply]

The following paragraph is not substantiated, and it is also unclear what contribution this statement makes to the article:

The problems of the Smartie or M&M model of the network was described by a Sun Microsystems engineer in a Network World article in May 1994, who described firewalls' perimeter defence, as a hard shell around a soft centre, like a Cadbury Egg.

A brief search did not reveal any sources for the article mentioned.

--Florian-breisch (talk) 13:24, 26 November 2023 (UTC)[reply]

In the RSS channel ZDNet.de it was said (received: June 02, 2022, 01:54 German time) that "ZTNA" stands for "Zero Trust Network Access".

Steue (talk) 05:56, 2 June 2022 (UTC)[reply]

"2018, work undertaken in the United States by cybersecurity researchers at NIST and NCCoE led to the publication of SP 800-207, Zero Trust Architecture.[5][6] The publication defines zero trust (ZT) as... "

is two times in the article. 78.0.102.202 (talk) 16:55, 29 June 2022 (UTC)[reply]

Has there been controversies surrounding the Zero Trust Security Model? Such as, privacy concerns, administrative abuse, etc.

Darrowwolfe (talk) 15:32, 25 April 2024 (UTC)[reply]