Zero Trust Architecture
Zero Trust Architecture
📖 定义
Zero Trust is a security model with the core principle of "never trust, always verify". It assumes that both inside and outside the network are insecure, and every request needs to verify identity and permissions, minimizing attack surface and lateral movement risks.
🔗 在 Higress 中的应用
Higress supports building zero-trust architecture, implementing identity verification and permission control for every request through capabilities such as mTLS, JWT verification, and fine-grained authorization.
💡 示例
- 1 Even intranet requests require identity authentication
- 2 Principle of least privilege limits access scope
- 3 Continuous verification rather than one-time trust
🔄 相关术语
❓ 常见问题
Zero Trust Architecture 是什么?
Zero Trust is a security model with the core principle of "never trust, always verify". It assumes that both inside and outside the network are insecure, and every request needs to verify identity and permissions, minimizing attack surface and lateral movement risks.
Higress 如何支持 Zero Trust Architecture?
Higress supports building zero-trust architecture, implementing identity verification and permission control for every request through capabilities such as mTLS, JWT verification, and fine-grained authorization.
深入了解 Higress
探索更多 Higress 的功能和最佳实践