摘要
零信任是当前网络安全领域的热门话题,强调“永不信任和始终验证”,零信任已被认为是当前抵御不断变化的网络和数据安全威胁的最佳理念之一。首先,梳理了零信任相关概念的定义及其发展进程;其次,剖析了零信任安全的基本原则、组件构成和相关技术;然后,阐述了零信任安全的重要性、机遇和优势;最后,就零信任安全最佳实践应用和关注重点进行了探索和思考。
Zero-trust is a hot topic in cyber security today,emphasizing“never trust and always verify”,and is considered by security experts to be one of the best concepts to resist the constantly changing network and data security threats.This paper first summarizes the definition and development process of the concepts related to zero-trust;then,analyzes the basic principles,component composition,and related technologies of zero-trust security;next,elaborates on the importance,opportunities,and advantages of zero-trust security;finally explores and thinks about the best practical application and focus of zero-trust security,so as to provide a reference for readers.
作者
嵇绍国
张芝军
王宏
梁利
JI Shaoguo;ZHANG Zhijun;WANG Hong;LIANG Li(National Research Center for Information Technology Security,Beijing 100084,China)
出处
《信息安全与通信保密》
2024年第3期91-102,共12页
Information Security and Communications Privacy
关键词
零信任安全
信息网络安全
应用
思考
zero-trust security
information cyber security
application
thinking
