I’ve been stuck with this idea can I build a Zero Trust architecture using only VMware’s currently available products?Īfter joining the Office of the CTO Global Field team, I started to explore this possibility. While BeyondCorp is all well-defined, and more and more vendors are supporting its architecture, I have been thinking about it from a different viewpoint. The Idea of a VMware Based Zero Trust Architecture Which means that VPN is completely obsolete. In other words, you should allow access to your applications from any network, as long as you can verify that the device is corporate owned and managed. Your trust in this device should be high. If the device is corporate owned and thereby managed you can place policies on that device, make sure antivirus software is installed and up to date, make sure the hard drive is encrypted and so on. externally connected devices? You need to place your trust into something else. Knowing this, why have different access requirements and policies for internal vs. Security reports often state that many attacks originate from the internal network.
The backdrop to BeyondCorp is that you can’t trust devices just because they are connected to your internal network. Reviewers: Cameron Haight – Vice President & Chief Technology Officer, Americas and Hadar Freehling – Staff Systems EngineerĮver since I read the Google’s BeyondCorp white papers many years ago, I’ve been thinking a lot about application protection, user experience, ease of management and trust in general. Author: Peter Bjork – Principal System Engineer Office of the CTO, Global Field
0 kommentar(er)
