Skip to main content
DI

Zero Trust Networks

Evan Gilman

advancedZero TrustCybersecurityAuthentication

Zero Trust Networks

Building Secure Systems in Untrusted Networks

by Evan Gilman, Doug Barth

4.4/5
O'Reilly Media
2017
238 pages
ISBN: 978-1491962190
Buy on AmazonRead on O'Reilly

Summary

Zero Trust Networks provides a thorough examination of the zero trust security model, where nothing inside or outside the network perimeter is trusted by default. The book covers network architecture, device trust, user trust, application trust, and how to build systems that verify every request regardless of source.

Why Read This Book

Zero trust is no longer optional for modern organizations. This book provides the architectural foundation for understanding and implementing zero trust principles, going beyond buzzwords to deliver practical, implementable guidance.

Key Takeaways

  • The principles and evolution of zero trust architecture
  • How to establish device, user, and application trust
  • Network architecture patterns for zero trust environments
  • Policy engines and trust computation
  • Migration strategies from perimeter-based security to zero trust

Who Should Read This

Security architects and network engineers designing or migrating to zero trust architectures.

Network EngineersSecurity ArchitectsCISOs

Frequently Asked Questions

What is "Zero Trust Networks" about?

Zero Trust Networks provides a thorough examination of the zero trust security model, where nothing inside or outside the network perimeter is trusted by default. The book covers network architecture, device trust, user trust, application trust, and how to build systems that verify every request regardless of source.

Who should read "Zero Trust Networks"?

Security architects and network engineers designing or migrating to zero trust architectures.

What are the key takeaways from "Zero Trust Networks"?

Key takeaways include: The principles and evolution of zero trust architecture; How to establish device, user, and application trust; Network architecture patterns for zero trust environments.

Related Books

Browse all

Zero Trust Security

Jason Garbis

Zero Trust Security

Jason Garbis, Jerry W. Chapman

4.3

This enterprise guide provides a comprehensive framework for planning and implementing zero trust security. It covers the strategic, architectural, and operational aspects of zero trust, including identity-centric security, microsegmentation, software-defined perimeters, and continuous verification.

intermediateZero TrustCybersecurity

Identity Attack Vectors

Morey J. Haber

Identity Attack Vectors

Morey J. Haber, Darran Rolls

4.3

Identity Attack Vectors explores the threat landscape targeting identity systems and provides practical guidance for implementing effective IAM solutions. It covers privileged access management, identity governance, attack patterns targeting credentials and identity stores, and defensive strategies.

intermediateIAMCybersecurity

NIST SP 800-63 Digital Identity Guidelines

Paul Grassi

NIST SP 800-63 Digital Identity Guidelines

Paul Grassi, James Fenton, Elaine Newton, Ray Perlner, Andrew Regenscheid

4.7

The NIST SP 800-63 Digital Identity Guidelines provide technical requirements for federal agencies implementing digital identity services. Revision 4 covers identity proofing (800-63A), authentication and lifecycle management (800-63B), and federation and assertions (800-63C). It defines Identity Assurance Levels (IAL), Authenticator Assurance Levels (AAL), and Federation Assurance Levels (FAL).

referenceComplianceIAM