Talk:Zero trust security model

Precise refs
Is there any reason to link to Marsh's scholar page and not directly to his paper? https://dspace.stir.ac.uk/bitstream/1893/2010/1/Formalising%20trust%20as%20a%20computational%20concept.pdf

Also the link mentions 2020, the paper is from 1994, so it's not clear to a reader that the link is actually about the 1994 paper.

In the same way, we're missing a link to John Kindervag's paper. I found this that seems to be the official source, it's behind a paywall, I don't know if that's authorized in Wikipedia (I hope it is): https://www.forrester.com/report/no-more-chewy-centers-the-zero-trust-model-of-information-security/RES56682?src=57047pdf&docid=56682

The following pdf is freely available and is presented as "the second in a collection of reports that describe the concept, architecture, and benefits of Forrester’s Zero Trust Model of information security". Seems strange that the first one would be behind a paywall and not the second one, but what do I know. http://www.virtualstarmedia.com/downloads/Forrester_zero_trust_DNA.pdf

Jrob kiwi (talk) 09:13, 29 October 2021 (UTC)

Missing Reference: Sun Microsystems engineer in a Network World article in May 1994
The following paragraph is not substantiated, and it is also unclear what contribution this statement makes to the article:

The problems of the Smartie or M&M model of the network was described by a Sun Microsystems engineer in a Network World article in May 1994, who described firewalls' perimeter defence, as a hard shell around a soft centre, like a Cadbury Egg.

A brief search did not reveal any sources for the article mentioned.

--Florian-breisch (talk) 13:24, 26 November 2023 (UTC)

"ZTNA" also stands for "... network access"
In the RSS channel ZDNet.de it was said (received: June 02, 2022, 01:54 German time) that "ZTNA" stands for "Zero Trust Network Access".

Steue (talk) 05:56, 2 June 2022 (UTC)

Paragraph repeated
"2018, work undertaken in the United States by cybersecurity researchers at NIST and NCCoE led to the publication of SP 800-207, Zero Trust Architecture.[5][6] The publication defines zero trust (ZT) as... "

is two times in the article. 78.0.102.202 (talk) 16:55, 29 June 2022 (UTC)

Zero Trust Controversies
Has there been controversies surrounding the Zero Trust Security Model? Such as, privacy concerns, administrative abuse, etc. Darrowwolfe (talk) 15:32, 25 April 2024 (UTC)