A Micro-Segmentation Protection Scheme Based on Zero Trust Architecture

Conference: ISCTT 2021 - 6th International Conference on Information Science, Computer Technology and Transportation
11/26/2021 - 11/28/2021 at Xishuangbanna, China

Proceedings: ISCTT 2021

Pages: 4Language: englishTyp: PDF

Personal VDE Members are entitled to a 10% discount on this title

Authors:
Xie, Linjiang; Hang, Feilu; Guo, Wei; Lv, Yao; Chen, Hexiong (Information Center, Yunnan Power Grid Co., Ltd, Kunming, China)

Abstract:
With the emergence of new IT technologies such as cloud computing, increasingly blurred network security boundaries, complex network access environment and huge network assets also bring new challenges to enterprise security: The east-west traffic is difficult to control, the network strategy of huge assets is difficult to maintain, the north-south traffic lacks perfect access, and access environment security is not related to the network policy. Traditional protection schemes based on fixed boundaries are beginning to fail. In this paper, a zero trust protection method based on network micro-segmentation, security gateway, and device environment perception is proposed.