## Designing a Zero Trust Architecture

Zero Trust implementation strategy should always be custom-fit to the unique business situation and industry-specific needs of an enterprise.

Zero Trust is different because your architecture will organically grow to fit your data precisely. No two Zero Trust security architectures will ever be the same.


1. **Identify your “protect surface”**
Your “protect surface” is everything you want to protect. It contains all of your business’s digital assets, including your sensitive or proprietary data, your Word/Excel/PowerPoint/Access files, your line-of-business and accounting apps, and your CRM data. You can assume that everything outside of your protect surface is unsecured.

  It’s usually pretty easy to ID what your most sensitive data is and many organizations can figure out their top assets and apps… but you may need some help figuring out what your crucial IT services are.

2. **Watch how traffic moves across your protect surface**
Next, you need to get a good idea of who or what is accessing your data, and why. Remember, “traffic” is more than just people – it’s also all the other apps, services, and data that access or link to the items in your protect surface. All those little interdependency details are what create the backdoors and security loopholes you’ll want to close up.

  To do this best, you’ll want to monitor every packet that moves across your protect surface. That way, you can determine the source of those packets and close any gaps in your overall cybersecurity. After completing this step, you’ll understand which traffic makes sense for your needs and which traffic is suspicious.

3. **Ensure that your protect surface evolves with your data**
Your Zero Trust protect surface guards your sensitive data with extra security measures, keeping your data safe on any device and in any location. As your data grows day-by-day, your protect surface should also grow with that expanding data. To keep your protect surface growing properly, you’ll need to design and implement a Zero Trust plan that includes detailed rules, controls, permissions (ACL changes), firewall policies, and more.

4. **Create Your Zero Trust Archtiture Policies**
Once the ZTA is designed, the next step is to create your ZTA policies to determine who or what should have access to your protect surfaces.
  A good way to begin drafting up ZTA policies is to follow Kipling’s method, which covers who, what, when, where, why, and how to design contextual-based policies

<center><img src="https://github.com/moaldeen/trustzone/blob/main/Kipling%20Method.png?raw=true" alt="sup-learning.png" width="60%"></center>

5. **Monitor & Maintain**
Once everything is designed and in place, the next step is to monitor and maintain your ZTA to help you fine tune and improve your ZTA over time. Zero Trust is an iterative process, so you should always be looking for ways to make improvements in your ZTA. Zero Trust is adaptive, so your ZTA should be as well.



## Exploring ZTA Use Cases

### VPN-Less Implementation

VPN

<center><img src="https://github.com/moaldeen/trustzone/blob/main/vpn.png?raw=true" alt="sup-learning.png" width="60%"></center>

- On-site users have implicit trust.

- VPN users are given full access.


<center><img src="https://github.com/moaldeen/trustzone/blob/main/vpn-less.png?raw=true" alt="sup-learning.png" width="60%"></center>

- Follows the same access process for all users.
- Since there’s no implicit trust, a VPN connection not needed


## East-West Segmentation


### Conventional Design
<center><img src="https://github.com/moaldeen/trustzone/blob/main/internet.png?raw=true" alt="sup-learning.png" width="60%"></center>

- Intranets generally have a level of implicit trust.

- Implicit trust makes lateral movement possible.


### Zero Trust Design

<center><img src="https://github.com/moaldeen/trustzone/blob/main/Zero-trust-firewall.png?raw=true" alt="sup-learning.png" width="60%"></center>

- Designed to prevent lateral movement.

- Limits the blast radius of an attack.

## Secure Access From Anywhere

<center><img src="https://github.com/moaldeen/trustzone/blob/main/anywhere_secure.png?raw=true" alt="sup-learning.png" width="60%"></center>



- **Identity Governance** focuses on identity management and access control.
- **Application Micro-Segmentation** places micro perimeters around trusted resources.
- **Software-Defined Networking** forms context-aware virtual networks for our assets at the network layer.

## Conditional Authentication & Authorization




### Conventional Design

Authentication and authorization is granted based on
location, role, username/password, PKI, and two-factor
authentication:


  - Virtual Private Network (VPN)

  - Trusted Network Location (Intranet)

  - Role-Based Access Control (RBAC)



### Zero Trust Design


<center><img src="https://github.com/moaldeen/trustzone/blob/main/Authentication_Authorization.png?raw=true" alt="sup-learning.png" width="60%"></center>


- Utilizes a much more robust dynamic and contextual process.
- Considers device health, location, time, behavior, etc.


## Microsoft Zero Trust Step by Step


https://www.microsoft.com/en-us/security/blog/2021/01/19/using-zero-trust-principles-to-protect-against-sophisticated-attacks-like-solorigate/
<center><img src="https://www.microsoft.com/en-us/security/blog/wp-content/uploads/2021/01/Zero-Trust-marketecture-products-004.jpg" alt="sup-learning.png" width="60%"></center>
