NIST issues guidance on zero trust architecture, including gap analysis of implementation by agencies

The National Institute of Standards and Technology has released the final version of its zero trust architecture guide for civilian government agencies and others, with a gap analysis, use cases and a “high-level roadmap” for implementation by enterprises.

“This document is intended to describe zero trust for enterprise security architects. It is meant to aid understanding of zero trust for civilian unclassified systems and provide a road map to migrate and deploy zero trust security concepts to an enterprise environment,”...