Zero-Trust-Based Access Control in a Multi-Layered and Micro-Segmented Network Infrastructure

avoin
Julkaisu on tekijänoikeussäännösten alainen. Teosta voi lukea ja tulostaa henkilökohtaista käyttöä varten. Käyttö kaupallisiin tarkoituksiin on kielletty.
Lataukset24

Verkkojulkaisu

DOI

Tiivistelmä

The cybersecurity field is constantly evolving alongside different technological ad vances in products designed for purposes such as asset protection. Although ad vances in technology are present and different frameworks and standards are created, organizations might not be confident in implementing concepts in more complex environments. Zero-trust is one of these concepts and, more specifically, zero-trust based access control. This thesis investigates how an organization could approach zero-trust-based access control solutions in complex environments that topologically consist of multiple lay ers and micro-segmented networks. The main focus is on how zero-trust-based access control can be designed for different access scenarios in this type of environment and how the designs can be implemented. To get insight into how this type of implementation can be done, a case study was carried out in which a generalized design was first introduced for zero-trust-based access control and then the said design was tailored to different access scenarios with the existing firewall solution in mind. Due to existing firewall solutions, a good base was already present in the environment for this type implementation, but the designs are still adaptable to other environments. After the designs were implemented in the case study, validation was performed through which it was deemed that the implementation was effective in securing traffic. As no major issues were observed during the case study, it can be deemed that it is not difficult to implement this type of solution. Overall, since the case study was a success and was carried out in a complex environment, it shows that organizations can move towards zero-trust-based access control even in complex environments. In conclusion, the thesis explores a well-known concept through a case study and proves through practical tests and a literature review that organizations can imple ment such a concept. The thesis additionally acknowledges that further research is possible through different scaling methods, which can lead to further validation.

item.page.okmtext