Why Implement Zero Trust 

IBM knows how to creating videos explaining complex topics in a very simple and precise manner

This is a nice presentation. Thank you. Another way I like to put it is this, "The role of security is to let the right people in, not to keep the wrong people out". Looked at it this way, zero trust doesn't look so draconian. This doesn't sit well with the house analogy, but does with real commercial computer systems (sadly, there have been cases throughout the history of IT where systems have been abused from the inside as well as from the outside). The point about granting people only the rights they need is well made - though you do need facilities and procedures to give temporary access when a critical worker on a system is suddenly unavailable: someone has to have the authority to grant temporary access - and then take it away as soon as the usual person returns. The point about "risk assessment" is also well made. You want everyone to come to your website and browse freely if you are selling something - but you want a solid guarantee of identity if they have a purchasing account with you: so different parts of your application may well have very different levels of security from total trust to zero trust, Granularity is key, and must be designed into the application from the outset. Good Code is Not Enough!

Excellent explanation! Very easy to understand. Thanks and hope you produce more of this type of content.

These vids rock. Whoever came up with the idea is the man

I like the build-up scenario of the house security, is like holding a baby's hand from level 0 to a higher level of talking about the least privilege. Thank you.

Great analogy of House to simplify the understanding - How to secure IT infra at Zero Trust Level. Nicely Explained - Never Trust Always Verify. Thanks a lot Jeff!

Jeff this was a great presentation !!!

Impressive overview of complicated subject made simple by best of the best - @Jeff Crume!

Clear and genius explanation! As usual :)

Well explained. Good comparisons.

This is excellent!

It was very good, thanks for the explanation!

Great analogy.

Brilliant stuff.

Awesome presentation! Thank you for sharing the knowledge.

Very short, but nicely packaged overview of zero trust concept. Thank you,

Thank you for the great information

This was a great explanation and great video!!

Very informative and useful, thank you.

I think it lacks the explanation of “why zero trust is essential when you are using the public cloud ?” Many companies are still thinking of perimetrical security because they are used of the “on premise” world. In the public cloud, the attacks can arrive from any place, any component…

“The things that I trust the most are the things that I have verified the most” Depending on risks, we are setting our point in the implicit-zero tolerance spectrum… how much we’re willing to risk and our risk tolerance.

I give you ⭐⭐⭐⭐⭐

only things i can verify.. do i trust .. start from zero and rebuild..

Fun

What does DMZ mean?

What kind of board is that? I want one.

Distinguish engineer,what is this role. This topic is related to security engineer isn’t it ?

How very 1984

I don't trust this man.

said nothing

Lol saying pay per view in 2024.