Zero Trust ialah model keselamatan berdasarkan prinsip never trust, always verify — dan bukannya mempercayai apa-apa berdasarkan lokasi rangkaian (dalam vs luar), setiap permintaan akses diautentikasi, diautorisasi, dan disahkan. Ia menangani kegagalan keselamatan berasaskan perimeter tradisional.
Masalah dengan keselamatan perimeter
TRADITIONAL ("castle and moat") security:
→ a strong PERIMETER (firewall); trust everything INSIDE the network
✗ once an attacker gets IN (breach, insider, compromised device), they move FREELY
(lateral movement) — the inside is implicitly trusted
✗ doesn't fit modern reality: cloud, remote work, mobile, distributed services (no clear
perimeter)
