A Micro-Segmentation Protection Scheme Based on Zero Trust Architecture

Konferenz: ISCTT 2021 - 6th International Conference on Information Science, Computer Technology and Transportation
26.11.2021 - 28.11.2021 in Xishuangbanna, China

Tagungsband: ISCTT 2021

Seiten: 4Sprache: EnglischTyp: PDF

Persönliche VDE-Mitglieder erhalten auf diesen Artikel 10% Rabatt

Xie, Linjiang; Hang, Feilu; Guo, Wei; Lv, Yao; Chen, Hexiong (Information Center, Yunnan Power Grid Co., Ltd, Kunming, China)

With the emergence of new IT technologies such as cloud computing, increasingly blurred network security boundaries, complex network access environment and huge network assets also bring new challenges to enterprise security: The east-west traffic is difficult to control, the network strategy of huge assets is difficult to maintain, the north-south traffic lacks perfect access, and access environment security is not related to the network policy. Traditional protection schemes based on fixed boundaries are beginning to fail. In this paper, a zero trust protection method based on network micro-segmentation, security gateway, and device environment perception is proposed.