Cloud Security Alliance Publishes New Research on the Software Defined Perimeter (SDP) and Zero Trust
WASHINGTON, June 01, 2020 (GLOBE NEWSWIRE) -- Waverley Labs, a pioneer in Software Defined Perimeters (SDP) and digital risk reduction solutions, today announced that the Cloud Security Alliance (CSA) has published new research titled Software Defined Perimeter (SDP) and Zero Trust.
The CSA is the world’s leading organization dedicated to defining standards, certifications, and best practices to help ensure a secure cloud computing environment.
Produced by CSA’s Software-Defined Working (SDP) Group, and co-authored by Juanita Koilpillai, Founder and Chief Executive Officer of Waverley Labs, and Nya Alison Murray, Senior ICT Architect, Trac-Car Technology, the paper sheds light on the use of SDP as the optimal implementation to support a Zero Trust Strategy.
It illustrates how a Zero Trust implementation using Software-Defined Perimeter enables organizations to defend new variations of old attack methods that are constantly surfacing in existing continuous monitoing and infrastructure perimeter-centric networking models.
It details how an SDP Zero Trust deployment can deny risky transactions based on a single packet analysis revealing a lack of positive identification. When applied to network connectivity, SDP is agnostic of the underlying IP-based infrastructure, allowing it to hone in on securing all connections making it the best architecture for achieving Zero Trust.
“Adopting a SDP implementation enforces the separation of establishing trust from data transfers,” said Nya Alison Murray. “Most of the existing “Zero Trust” security measures are applied as authentication and ‘sometimes’ authorization based on policy after the termination of TLS certificates. Certificate validation is a complex verification and validation process, and there are known possible vulnerabilities with TLS 1.2, TLS 1.3 and mutual TLS. Network segmentation and the establishment of micro networks, so important for multi-cloud deployments, also benefit from adopting a software defined perimeter Zero Trust architecture.”
The paper outlines a call to action for a Zero Trust proof of concept (POC) that would demonstrate how SDP addresses the challenges of application delivery in a hybrid multi-cloud environment. Specifically, the POC would demonstrate:
About Waverley Labs
Occupant Wellness in the Indoor Environment
IoT Evolution #TECHSUPERSHOW Expo Hall Open
Real-time Insights: A Case Study for the Next Generation of Smart Construction Ecosystem