Day Two Cloud 094: Essential Concepts Of Zero Trust

The Everything Feed - All Packet Pushers Pods - A podcast by Packet Pushers

Categories:

Today’s Day Two Cloud episode aims to pick apart the marketing fluff around Zero Trust (there’s a lot of it) to uncover a workable definition, discuss the rationale for this approach, and develop a framework for how to think about zero trust. The essential idea of zero trust is to treat an entity (a device, a user, an application) as a potential risk and then take steps to reduce that risk. These steps could include limiting access, enforcing segmentation, intercepting and scanning traffic for threats, and applying and enforcing policies based on context such as user role, device type, and location. As you might guess, there are lots of ways to mix, match, and implement these controls. We discuss: * The concept of Zero Trust and Zero Trust Network Access (ZTNA) * How it relates to, and differs from other security approaches * A zero trust framework including identity management, policy, and enforcement * Different vendor approaches to zero trust * More Sponsor: CBT Nuggets CBT Nuggets is IT training for IT professionals and anyone looking to build IT skills. If you want to make fully operational your networking, security, cloud, automation, or DevOps battle station visit cbtnuggets.com/cloud. Tech Bytes: Gluware Stay tuned for a sponsored Tech Bytes conversation with Gluware. Gluware is a network automation platform to automate and orchestrate multi-vendor network devices on premises and in the cloud. We explore the latest features and capabilities in the Gluware platform, including an API-based controller to work with SD-WAN, and integration with Terraform to support infrastructure automation in the public cloud. Our guests are Michael Haugh, VP, Product Marketing; and Olivier Huynh Van, CSO, Co-Founder. Show Transcript: [00:00:00.940] – Ethan [AD] Sponsor CBT Nuggets, is IT training for IT professionals and anyone looking to build IT skills, if you want to make fully operational your networking cloud security automation or DevOps Battle Station, visit CBT nuggets, dotcom slash cloud. That’s CBT nuggets. Dotcom slash cloud. [/AD] [00:00:24.840] – Ned Welcome to Day Two Cloud and, you know, on Day Two Cloud, one of the things that we try to focus on is cutting through the marketing fluff and getting down to the core of what something is, because marketing likes to abuse terms and we like terms to, I don’t know, mean something. So today’s conversation is going to be me and Ethan trying to pick apart what zero trust networking is. You’ve probably heard, the term zero trust. It’s been splashy on all kinds of websites and marketing fluff, but it needs to mean something. [00:00:53.190] So we’re going to try to figure out what that thing is. And then after that, stay tuned for a sponsored Tech Bytes conversation with Gluware about automating your cloud networking. So, Ethan, zero trust. I’m going I’m going to start with the big question. Are you ready? [00:01:08.110] – Ethan I’m ready. [00:01:09.120] – Ned All right. What is it? [00:01:13.300] – Ethan That is the biggest question of all, Ned. What is zero trust? So zero zero trust ZTNA. Zero Trust Network access. Well, OK, it’s it’s been a term that’s come up a lot recently. And to me it’s it’s an evolution of micro segmentation. Do you remember what micro segmentation is that you run into that? [00:01:31.260] – Ned Yeah, definitely ran into that when I was still working with VMware a bit because that was a big thing with NSX,

Visit the podcast's native language site