Zero Trust 1.2

Question 1

Describe ZERO TRUST

Answer 1

• A holistic approach to network security in which the users must be provide authenticate every time they’re trying to access a resource.

Question 2

Through a ZERO TRUST policy, what are some SECURITY CHECKS that can be implemented?

Answer 2

• multi-factor authentication, encyrption, system permissions, additional firewalls, monitoring and analytics, and security policies and controls.

Question 3

What is the purpose of SEPARATE FUNCTIONAL PLANES OF OPERATIONS?

Answer 3

• Breaking down a security device or system into smaller individual components.

Question 4

Describe the DATA PLANE.

Answer 4

• The part that is performing the actual security processes.
• Manages the processes of frames, packets, and network data.
• Manages the process of moving data from one network to another.

Question 5

Describe the CONTROL PLANE.

Answer 5

• Manages the actions of the data plane.
• Defines policies and rules.
• Determines how packets should be forwarded.

Question 6

How can security controls be evaluated using ADAPTIVE IDENTITY?

Answer 6

• Examining the identity of individual and other information.

Question 7

What are some considerations when using ADAPTIVE IDENTITY?

Answer 7

• Consider the source and the requested resources.
• Multiple risk indicators - relationship to the organization, physical location, type of connection, IP addresses, etc.
• Make the authentication stronger, if needed.

Question 8

How is ZERO TRUST controlled using THREAD SCOPE REDUCTION?

Answer 8

• limit how many places can be used to get into the network.

Question 9

What is the purpose of POLICY DRIVEN ACCESS CONTROL?

Answer 9

• Examines all data end points and determines the type of authentication process.
• Combines the adaptive identity with a predefined set of rules.

Question 10

How can establishing SECURITY ZONES assist in authenticate users?

Answer 10

• Security zones validate the location from where the user is accessing a system and where the data is being sent to.
• Allows setting rules for a particular zone or location.

Question 11

Describe the purpose of a POLICY ENFORCEMENT POINT (PEP)

Answer 11

• Sets the policy and procedures.
• Is set up within the data flow pathway.
• Acts as a gatekeeper to allow or disallow specific types of traffic.
• Is comprised of multiple systems or devices.

Question 12

What are some examples of SUBJECTS AND SYSTEMS that are managed by the PEP?

Answer 12

• End users, applications, non-human entities

Question 13

How does the POLICY ENFORCEMENT POINT (PEP) determine which traffic is allowed or disallowed?

Answer 13

• All traffic is managed through a POLICY DECISION POINT which gathers all the information and determines what traffic is allowed on the system.
• Comprised of a POLICY ENGINE and a POLICY ADMINISTRATOR.

Question 14

What is the purpose of the POLICY ENGINE?

Answer 14

• Gathers all requests and evaluates them against some predefined security policies.
• Determines if the access is granted, denied, or revoked.

Question 15

What is the purpose of the POLICY ADMINISTRATOR?

Answer 15

• Receives the decision from the POLICY ENGINE.
• Generates a token or additional credentials, and will communicate to the PEP to allow or disallow access.