Zero Trust adalah model keamanan berdasarkan prinsip jangan pernah percaya, selalu verifikasi — daripada mempercayai sesuatu berdasarkan lokasi jaringan (dalam vs luar), setiap permintaan akses diautentikasi, diotorisasi, dan diverifikasi. Ini mengatasi kegagalan keamanan berbasis perimeter tradisional.
Masalah dengan keamanan perimeter
TRADITIONAL ("castle and moat") security:
→ a strong PERIMETER (firewall); trust everything INSIDE the network
✗ once an attacker gets IN (breach, insider, compromised device), they move FREELY
(lateral movement) — the inside is implicitly trusted
✗ doesn't fit modern reality: cloud, remote work, mobile, distributed services (no clear
perimeter)
