_CORE
AI & Agentic Systems Core Information Systems Cloud & Platform Engineering Data Platform & Integration Security & Compliance QA, Testing & Observability IoT, Automation & Robotics Mobile & Digital Banking & Finance Insurance Public Administration Defense & Security Healthcare Energy & Utilities Telco & Media Manufacturing Logistics & E-commerce Retail & Loyalty
References Technologies Blog Know-how Tools
About Collaboration Careers
CS EN
Let's talk

Zero Trust — The End of Perimeter Security

11. 09. 2019 1 min read CORE SYSTEMSsecurity
Zero Trust — The End of Perimeter Security

Traditional security: strong perimeter (firewall, VPN), everything inside is trusted. The problem: once an attacker gets inside, they have free access. Zero Trust says: trust nobody, verify everything.

Zero Trust Principles

  • Verify explicitly: every request authenticated and authorized
  • Least privilege: minimum necessary permissions
  • Assume breach: design the system as if the attacker is already inside

Google BeyondCorp Inspiration

Google eliminated VPN. Access to internal applications depends on the user’s identity, device state, and context — not on network location. Are you accessing from the office or a café? Doesn’t matter. What matters is who you are and whether your device is up to date.

Our Steps Toward Zero Trust

Identity-centric access: SSO with MFA for all applications. Mutual TLS: Istio service mesh for internal communication. Network segmentation: Kubernetes Network Policies. Device trust: MDM for company devices, conditional access policies.

Gradual Implementation

Zero Trust isn’t a one-time project. It’s a journey. We start with the most sensitive systems (finance, personal data) and gradually expand. VPN still exists as a fallback, but the plan is to eliminate it by 2021.

Zero Trust Is the New Standard

Perimeter security is dead. Zero Trust is an investment in the future — and with a cloud-first architecture, it’s the only approach that makes sense.

zero trustsecuritybeyondcorpidentity
Share:

CORE SYSTEMS

Stavíme core systémy a AI agenty, které drží provoz. 15 let zkušeností s enterprise IT.

Need help with implementation?

Our experts can help with design, implementation, and operations. From architecture to production.

Contact us