NSA Shares Zero Trust Security Model Guide, Recommendations
Health IT Security
The NSA unveiled guidance for implementing a zero trust security model across the enterprise infrastructure, which includes recommendations. The system management strategy is designed to bolster workflows and infrastructure through a coordinated, proactive security approach.
As previously noted, the zero trust model is highly recommended for healthcare delivery organizations as a way to stop attack proliferation across connected devices, strengthen access controls, and protect cloud-based assets.
“A zero trust architecture uses zero trust principles to plan enterprise infrastructure and workflows,” according to NIST. “Zero trust assumes there is no implicit trust granted to assets or user accounts based solely on their physical or network location (i.e., local area networks versus the internet).”
“Authentication and authorization (both user and device) are...