'Zero network trust' should mean exactly what it says
Another security principle that is being misunderstood
Published 15:18, 10 November 10
From there he went on to explain how you fix the problem - by building security back into parts of the network - and I thought 'fantastic, he's going to do an exposé of why this approach is fundamentally flawed and why, when the Jericho Forum looked at it over five years ago, we rejected it'.
My heart sank as I realised he was seriously proposing this as a viable solution.
Adding security in to choke points in the network to control traffic is fundamentally flawed. It inhibits collaboration, does not scale for corporate-wide management. More fundamentally it adds cost and huge complexity to a problem that is better solved by simply using open and secure protocols (95 percent of which are readily available today).
I was going to quote which of the eleven Jericho Forum Commandments John is breaking in his proposal, but when I looked it was all of them. Enough said!
Paul Simmonds, Jericho Forum Board Member