ZTNA 2.0 is a solid differentiator that appeals to technical experts in leadership roles across large-scale organizations. Only actual implementations will tell whether it delivers on the expectations it’s raising.
Existing zero-trust network access (ZTNA) strategies contain holes that are getting bigger, putting organizations and threat surfaces in danger. Pursuing ZTNA 1.0 frameworks also leads to app sprawl, more complex tech stacks, and unsecured SaaS apps, three things CISOs are working hard to avoid.
Another significant gap is how many applications and endpoints use dynamic ports and require a variety of IP addresses to work. The TCP/IP and TCP/UDP protocols offer broad, packet-level access privileges; however, because they weren’t created for that purpose, they cannot be used to specify sub-app or app function level access.
Existing issues with ZTNA
The essence of ZTNA’s existing problems is how vulnerable apps, platforms, and network connections rely on the OSI Model’s lower tiers to connect throughout a business. ZTNA 2.0’s creators claim that links, endpoints (both human and machine), network traffic, and integrations that traverse the third and fourth layers of the OSI Model are still susceptible to intrusion.
This is because traffic on these model layers relies on the main components of the TCP/UDP network protocols. Additionally, they only use IP addresses to specify physical pathways.
ZTNA’s critics claim it is especially tough to implement least-privileged access and trust verification in real-time. On the other hand, Palo Alto Networks claims that ZTNA 2.0 is required because the OSI Model layers are being compressed due to the exponential growth in virtual workforces, significant reliance on hybrid cloud infrastructure, and new digital-first business models.
Zero trust is gaining fast among the larger enterprise organizations with the technical personnel and senior technical leaders who can delve into its architecture to understand how it complements its compliance, risk, and digital growth goals.
They place the utmost importance on identifying significant technical differentiators that support their business’ compliance, risk management, cybersecurity, and digital growth objectives.
ZTNA 2.0 is a solid differentiator that appeals to technical experts in leadership roles across large-scale organizations. Only actual implementations will tell whether it delivers on the expectations it’s raising.
Also Read: The positive Role of Zero Trust in Combating Ransomware
Cybersecurity with Zero Trust
After workplaces fully reopen, the attack surface will remain vast as many employees will opt to work remotely regularly. Business continuity is at stake. Thus, CISOs will need to consider solutions that not only protect their entire infrastructure but also cater to the needs of their staff members for constant access and speed—in other words, ease.
Zero Trust 2.0 has a clear advantage in that it is not standalone and has a straightforward approach. Additionally, the framework can be set up using a single software development kit (SDK), enabling enterprises to implement Zero Trust 2.0 through a single integration and have access to numerous passive authentication levels as a result.
Organizations can achieve better security with Zero Trust 2.0 and a more long-lasting solution tailored to each employee’s individual needs and preferences. In addition to reducing the attack surface, Zero Trust 2.0 can help balance the scales in favor of good and limit the spread of evil.
What ZTNA 2.0 gets right
When executable code can be compromised in a cybersecurity vendor’s supply chain or entire organization over a single phishing attempt, it’s apparent that cyberwarfare is reaching a new level. ZTNA 2.0 warns that the expanding gaps in corporate defenses, some of which are shielded by zero trust today, are nonetheless vulnerable. For ZTNA 2.0 to grow as a standard, it will need abundant use cases across industries and reliable financial data that other organizations can utilize to create business cases enterprises’ boards of directors can trust.
For more such updates follow us on Google News ITsecuritywire News