undefined | Better HN

0 pointswepple2y ago0 comments

What’s this got to do with zero trust?

0 comments

it is a cynical comment that is meant to hilite the relationship between humans where oppressive and untrusting employment leads to increase in antipathy, ill-will, feelings of being abused and all of that leading to insider theft and serious pre-meditated betrayal ?

wyldberry2y ago

Zero Trust is such a bad branding for how the architecture works. It's just "always prove" architecture.

weppleOP2y ago

“Always prove” and “zero ambient trust” are basically the same thing, no?

Perhaps “authenticate everything, everywhere” is better, but falls into the trap of trying to define “everywhere” and “everything”: should every single client application have to authenticate? Should you have to authenticate Ethernet frames?

wyldberry2y ago

I think we may mean the same thing, but zero trust has a connotation of negative rights, versus always prove is a way of framing things in a more positive assertion. At least that's worked for me at the last couple of places i've been.

Should every client application have to authenticate and authorize? Probably not every but the overwhelming majority probably and those that don't should have a good justification as to not. The challenge after that is "how long is this good for?".

tough2y ago

It does seem to sound pretty well on the mind of the executives signing the deals that hear the marketing talk

j / k navigate · click thread line to collapse

0 comments

mistrial92y ago

wyldberry2y ago

Zero Trust is such a bad branding for how the architecture works. It's just "always prove" architecture.

weppleOP2y ago

“Always prove” and “zero ambient trust” are basically the same thing, no?

wyldberry2y ago

tough2y ago

It does seem to sound pretty well on the mind of the executives signing the deals that hear the marketing talk

j / k navigate · click thread line to collapse