Zero Trust Networks: Building Secure Systems in Untrusted Networks
Author: Razi Rais (Author), Christina Morillo (Author), Evan Gilman (Author), Doug Barth (Author)
Publisher finelybook 出版社: Oreilly & Associates Inc
Edition 版本: 2nd
Publication Date 出版日期: 2024-04-02
Language 语言: English
Print Length 页数: 332 pages
ISBN-10: 1492096598
ISBN-13: 9781492096597
Book Description
Perimeter defenses guarding your network aren’t as secure as you might think. Hosts behind the firewall have no defenses of their own, so when a host in the “trusted” zone is breached, access to your data center is not far behind. This practical book introduces you to the zero trust model, a method that treats all hosts as if they’re internet-facing, and considers the entire network to be compromised and hostile.
In this updated edition, the authors show you how zero trust lets you focus on building strong authentication, authorization, and encryption throughout, while providing compartmentalized access and better operational agility. You’ll learn the architecture of a zero trust network, including how to build one using currently available technology.
- Explore fundamental concepts of a zero trust network, including trust engine, policy engine, and context aware agents
- Understand how this model embeds security within the system’s operation, rather than layering it on top
- Use existing technology to establish trust among the actors in a network
- Migrate from a perimeter-based network to a zero trust network in production
- Examine case studies that provide insights into various organizations’ zero trust journeys
- Learn about the various zero trust architectures, standards, and frameworks
About the Author
Christina Morillo is an accomplished enterprise information security and technology leader with over two decades of practical experience building and leading comprehensive information security and technology programs. Her skill and expertise have landed her roles at organizations such as Microsoft and Morgan Stanley, and she currently leads information security for an NFL sports team. Christina’s impact extends beyond her enterprise security work. She is a speaker and the author of 97 Things Every Information Security Professional Should Know and The Future of Security (both published by Oâ??Reilly). Christina has also contributed to and been featured in a variety of industry publications. In addition, she serves as a Fellow and Advisor at New America for the #ShareTheMicInCyber Initiative, showcasing her commitment to the broader security community. For more on her professional journey and insights, visit https://bio.site/christinamorillo and https://www.christinamorillo.com.
Evan Gilman is the co-founder and CEO of SPIRL, the workload identity company. With roots in academia and a background in operations engineering and computer networks, he has been building and operating systems in hostile environments his entire professional career. An open source contributor, speaker, and author, Evan is passionate about designing systems that strike a balance with the networks they run on.
Doug Barth is a software engineer who loves to learn and shares his knowledge with others. In his over 20 years of professional experience, he has worked as both an infrastructure and product engineer at companies like SPIRL, Stripe, PagerDuty and Orbitz. He has built and spoken about monitoring systems, mesh networks, and failure injection practices.