Zero Trust

Question 1

Demands verification for every device, user, and transaction within the network, regardless of its origin

Answer 1

Zero Trust

Question 2

2 planes used for zero trust architecture

Answer 2

Control plane and data plane

Question 3

Refers to the overarching framework and set of components responsible for defining, managing, and enforcing the policies related to user and system access within an organization

Answer 3

Control Plane

Question 4

Adaptive Identity, Threat Scope Reduction, Policy-Driven Access Control, Secured Zones,

Answer 4

Key elements that encompasses the control plane

Question 5

Relies on real-time validation that takes into account the
user’s behavior, device, location, and more

Answer 5

Adaptive Identity

Question 6

Limits the users’ access to only what they need for their
work tasks because this reduces the network’s potential
attack surface
Focused on minimizing the “blast radius” that could occur
in the event of a breach

Answer 6

Threat Scope Reduction

Question 7

Entails developing, managing, and enforcing user access
policies based on their roles and responsibilities

Answer 7

Policy-Driven Access Control

Question 8

Isolated environments within a network that are designed
to house sensitive data

Answer 8

Secured Zones

Question 9

Uses a Policy Engine and a Policy Administrator to make
decisions about access

Answer 9

Control Plane

Question 10

Cross-references the access request with its predefined
policies

Answer 10

Policy Engine

Question 11

Used to establish and manage the access policies

Answer 11

Policy Administrator

Question 12

This consist of Subject/System, Policy Enforcement Point,

Answer 12

Data Plane