Do you think Biden's executive order accurately represented Zero Trust architecture?

The executive order has a pretty good definition of Zero Trust architecture that says it's “an acknowledgement that threats exist both inside and outside of traditional network boundaries. The Zero Trust security model eliminates implicit trust in any one element/node/service, and instead requires continuous verification from multiple sources to determine access and coordinate system wide.”  Here are formal definitions of Zero Trust from NIST (https://csrc.nist.gov/publications/detail/sp/800-207/final) and DoD (https://dodcio.defense.gov/Portals/0/Documents/Library/(U)ZT_RA_v1.1(U)_Mar21.pdf).

Anonymous Author
The executive order has a pretty good definition of Zero Trust architecture that says it's “an acknowledgement that threats exist both inside and outside of traditional network boundaries. The Zero Trust security model eliminates implicit trust in any one element/node/service, and instead requires continuous verification from multiple sources to determine access and coordinate system wide.”  Here are formal definitions of Zero Trust from NIST (https://csrc.nist.gov/publications/detail/sp/800-207/final) and DoD (https://dodcio.defense.gov/Portals/0/Documents/Library/(U)ZT_RA_v1.1(U)_Mar21.pdf).
1 upvotes
Anonymous Author
They refer to a Zero Trust architecture but there's no acknowledgement that the packet is not a human being. The packet is what has Zero Trust—that's what needs to be looked at.
1 upvotes