The greatest threat to zero trust is not ransomware or advanced persistent threats; it is marketing. Technology marketing tends to overuse buzzwords until they lose their meaning; take the predominance of “artificial intelligence” solutions, for example. Thanks to the self-aggrandizing behavior of cybersecurity marketing, zero trust is one of the most egregious victims.
According to the National Institute of Standards and Technology (NIST), in a modern zero trust architecture (ZTA), the focus is on protecting “resources (assets, services, workflows, network accounts, etc.), not network segments, as the network location is no longer seen as the prime component to the security posture of the resource.”