Zero-Trust For
Zero-Gravity
Spideroak's LATEST WHITE PAPER ON ZERO-TRUST
Securing new space means operators must adapt beyond custom, un-scalable models to systems where trust is constantly questioned – a zero-trust architecture.
Securing new space means operators must adapt beyond custom, un-scalable models to systems where trust is constantly questioned – a zero-trust architecture.
As more emphasis is being paid to Zero Trust Architecture (ZTA) concepts with increased adoption in both the public and private sectors, SpiderOak’s OrbitSecure platform helps to strengthen an organization’s cyber security posture as defined in both National Institute of Standards and Technology’s (NIST) and Department of Defense’s (DoD) Zero Trust Strategies.
he NIST 800-207 ‘Zero Trust View of a Network’ makes basic assumptions for network planning and deployment (such as no resource or network should be implicitly trusted, not all resources are on enterprise infrastructure, and consistent security policy for resources while moving across both enterprise owned, and non-enterprise owned infrastructures). OrbitSecure helps to satisfy these assumptions in the formation of a ZTA by implementing enhanced identity governance over resources in the network through Role-based Access Controls (RBAC) as defined in the customizable policy engine.
Dynamic trust circles are negotiated between nodes in the system for software-defined segmentation at mission speed. The policy engine at each node is responsible for the ultimate decision to grant access to a resource on a per session basis, not trusting even administrators but validating each change in the system at every step. Encrypted messages propagate through the network architecture via peer-to-peer connections for fully decentralized access management. OrbitSecure’s lightweight software library integrates with applications to maintain identity, authority, and key management within the enterprise.
By implementing OrbitSecure at the application level, networks can more effectively realize the ‘Strategic Outcomes’ set out by the DoD’s Zero Trust Strategy including:
[wpforms id=”2098″]