Zero Trust vs. Trust But Verify: A Cybersecurity Superhero Analogy
1 min read
Summary
In a new blog post, cybersecurity firm Zscaler pits the evolving Zero Trust security approach against the tried-and-tested “Trust But Verify” (TBV) philosophy with the help of two fictional superhero characters.
Captain Verify (TBV) is characterised as a cautious but not overly distrustful security guardian who grants users moderate levels of access and continually monitors their behaviour.
In contrast, Zscaler positions Captain Zero as an overly suspicious gatekeeper that repels access requests from unknown users and locations and always assumes the worst unless proven otherwise.
The cyber security firm says that while Zero Trust security is more evolved and effective at protecting modern organisations, a more pragmatic and balanced approach like TBV is often preferable.
Zero Trust is recommended as a supplement to TBV rather than a full replacement.