The VPN is dying, long live zero trust

The traditional VPN is being replaced by a smarter, safer approach to network security that treats everyone as equally untrusted, writes Neal Weinberg for Network World.

Hacking 3112539 960 720

FOSTER CITY, Calif., - The venerable VPN, which has for decades provided remote workers with a secure tunnel into the enterprise network, is facing extinction as enterprises migrate to a more agile, granular security framework called zero trust, which is better adapted to today’s world of digital business, writes Neal Weinberg for Network WorldContinue reading original article

The Intelligent Aerospace take:

December 5, 2019-Weinberg notes that a majority of enterprises will phase out most of their VPNs in favor of "zero trust" access to company networks by 2023. Zero trust requires that both the device and user are authenticated, which prevents malicious actors from stealing someone's VPN credentials. With traditional VPNs, contractors, third-party and supply-chain partners can create network vulnerabilities.

“The perimeter-based model of security categorically has failed,” Forrester principal analyst Chase Cunningham said to Weinberg. “And not from a lack of effort or a lack of investment, but just because it’s built on a house of cards. If one thing fails, everything becomes a victim. Everyone I talk to believes that.”

Related: U.S. Air traffic control computers vulnerable to cyber security threats, GAO says

Related: Optimizing cyber security and trusted computing on today’s connected military and commercial aircraft

Related: Air Force asks Northrop Grumman to beef-up cyber security for BACN communications

Jamie Whitney, Associate Editor
Intelligent Aerospace

More in Resources