The Challenge of Achieving Zero Trust Remote Access in Multi-Cloud Environment

Authors

  • Venkata Naga Satya Surendra Chimakurthi Solutions Architect, CDBDX-Platforms-DAM (Digital Asset Management), Cognizant Technology Solutions, Dallas, USA

DOI:

https://doi.org/10.18034/abcjar.v9i2.608

Keywords:

Zero Trust, Multi-cloud Environment, Cybersecurity, Network Security

Abstract

Zero-trust security models and architectures have recently increased in adoption due to several variables, such as the widespread use of off-premises cloud technologies, variety in IT devices, and diffusion in the Internet of Things (IoT). Users, devices, apps, and networks are all assumed to be untrustworthy in this approach, which is built on the idea of various tiers of Trust and authentication. Cybersecurity paradigms are developing, and the term "zero trust" describes the shift from static network perimeters to protecting people, things, and resources. Economic and enterprise architecture and processes can be designed using zero trust principles. In the idea of zero Trust, assets or user accounts are thought to have no implicit confidence because of their physical or network location (Internet vs local networks) or asset ownership (enterprise or personally owned). Authentication and authorization must be conducted before a connection to an organizational resource can be established. There are many different types of Cloud, including several public, private, hybrid, and on-premises. For data centers, a multi-cloud deployment strategy includes many different public cloud service providers instead of relying on a private cloud or on-premises architecture. Hybrid multi-cloud is a multi-cloud implementation that incorporates all public and private clouds and on-premises technology. This paper discusses the zero-trust security model for multi-cloud environments and applications and the obstacles to implementing it.

Downloads

Download data is not yet available.

References

Bernard, T. S., Hsu, T., Perlroth, N., & Lieber, R. (2017). Equifax Says Cyberattack May Have Affected 143 Million in the U.S. The New York Times. Retrieved from https://www.nytimes.com/2017/09/07/business/equifax-cyberattack.html

Blinder, A., & Perlroth, N. (2018). A Cyberattack Hobbles Atlanta, and Security Experts Shudder. The New York Times. Retrieved from https://www.nytimes.com/2018/03/27/us/cyberattack-atlanta-ransomware.html

Chen, Z., Tian, L., & Lin, C. (2018). Trust evaluation model of cloud user based on behavior data. International Journal of Distributed Sensor Networks, 14(5), https://doi.org/10.1177/1550147718776924 DOI: https://doi.org/10.1177/1550147718776924

Chimakurthi, V. N. S. S. (2017a). Cloud Security - A Semantic Approach in End to End Security Compliance. Engineering International, 5(2), 97-106. https://doi.org/10.18034/ei.v5i2.586 DOI: https://doi.org/10.18034/ei.v5i2.586

Chimakurthi, V. N. S. S. (2017b). Risks of Multi-Cloud Environment: Micro Services Based Architecture and Potential Challenges. ABC Research Alert, 5(3), United States. https://doi.org/10.18034/abcra.v5i3.590 DOI: https://doi.org/10.18034/abcra.v5i3.590

Chimakurthi, V. N. S. S. (2018). Emerging of Virtual Reality (VR) Technology in Education and Training. Asian Journal of Humanity, Art and Literature, 5(2), 157-166. https://doi.org/10.18034/ajhal.v5i2.606 DOI: https://doi.org/10.18034/ajhal.v5i2.606

Cordeiro Filho, R., Carvalho, A. A., Carvalho, R. A., Cordeiro, M. P., Cordeiro, G. S., Teixeira, C. D., … Pedro, R. N. (2019). Endourologic Treatment for Aggressive Angiomyxoma of the Bladder. Journal of Endourology Case Reports, 5(1), 19–21. https://doi.org/10.1089/cren.2018.0106 DOI: https://doi.org/10.1089/cren.2018.0106

Flanigan, J. (2018). Zero Trust Network Model. Retrieved from https://www.cs.tufts.edu/comp/116/archive/fall2018/jflanigan.pdf

Gilman, E., & Barth, D. (2017). Zero trust networks: building secure systems in untrusted networks. Sebastopol, Ca: O’reilly Media.

Kindervag, J., & Balaouras, S. (2010). No more chewy centers: Introducing the zero trust model of information security. Forrester Research, 3.

Pawar, P. S., Sajjad, A., Dimitrakos, T., & Chadwick, D. W. (2015). Security-as-a-Service in Multi-cloud and Federated Cloud Environments. Trust Management IX, 251–261. https://doi.org/10.1007/978-3-319-18491-3_21 DOI: https://doi.org/10.1007/978-3-319-18491-3_21

Security, R. B. (2019). Data Breach QuickView Report 2019 Q3 Trends. Retrieved from pages.riskbasedsecurity.com website: https://pages.riskbasedsecurity.com/data-breach-quickview-report-2019-q3-trends

Tao, Y., Lei, Z., & Ruxiang, P. (2018). Fine-Grained Big Data Security Method Based on Zero Trust Model. 2018 IEEE 24th International Conference on Parallel and Distributed Systems (ICPADS). https://doi.org/10.1109/padsw.2018.8644614 DOI: https://doi.org/10.1109/PADSW.2018.8644614

Ward, R., & Beyer, B. (2014). BeyondCorp: A New Approach to Enterprise Security. Login, 39(6), 6–11. Retrieved from https://research.google/pubs/pub43231/

--0--

Downloads

Published

2020-12-31

How to Cite

Chimakurthi, V. N. S. S. (2020). The Challenge of Achieving Zero Trust Remote Access in Multi-Cloud Environment. ABC Journal of Advanced Research, 9(2), 89-102. https://doi.org/10.18034/abcjar.v9i2.608