CNX-001 · Question #44
An organization with an on-premises data center is adopting additional cloud-based solutions. The organization wants to keep communication secure between remote employees' devices and workloads. Which
The correct answer is D. Identity as the perimeter. Zero Trust Architecture (ZTA) removes implicit trust based on network location and replaces it with continuous verification of identity. 'Identity as the perimeter' means that instead of trusting a device because it is on the corporate network, access is granted based on verified
Question
An organization with an on-premises data center is adopting additional cloud-based solutions. The organization wants to keep communication secure between remote employees' devices and workloads. Which of the following ZTA features best achieves this goal?
Options
- ASecure service edge
- BCloud access security broker
- CPrinciple of least privilege
- DIdentity as the perimeter
How the community answered
(21 responses)- A19% (4)
- B5% (1)
- C5% (1)
- D71% (15)
Explanation
Zero Trust Architecture (ZTA) removes implicit trust based on network location and replaces it with continuous verification of identity. 'Identity as the perimeter' means that instead of trusting a device because it is on the corporate network, access is granted based on verified identity regardless of where the user or device is located - on-premises or in the cloud. This directly addresses the scenario of securing communication between remote employees and cloud workloads across a hybrid environment. SSE (A) is a delivery model for security services, CASB (B) governs cloud application access policies, and least privilege (C) is an access-scoping principle - none captures the ZTA concept of identity replacing the network boundary as directly as D.
Topics
Community Discussion
No community discussion yet for this question.