The Department of Defense’s (DoD) approach to Zero Trust leverages automation and analytics using tailored controls to address risk. In part two of our series on the DoD’s Zero Trust security model, we continue to explore the crucial framework for defending against modern cyber threats. 

Zero Trust Pillars

The DoD Zero Trust implementation is structured around seven foundational pillars, each supported by specific enablers and capabilities to ensure a comprehensive security model. 

These Pillars are:

1. User: Continuous authentication and activity monitoring to govern access and privileges.
2. Device: Real-time inspection, assessment, and patching of devices to inform risk decisions. 
3. Applications & Workload: Security from applications to hypervisors, containers, and virtual machines.
4. Data: Transparency and visibility secured by infrastructure, applications, standards, encryption, and data tagging. 
5. Network & Environment: Segmentation and control of the network environment with dynamic policy and access controls. (Read more...)