Effective Zero Trust: Enhancing App Access Control Using DNS
For 'zero trust' to be effective, controlling which devices can access which apps and domains is vital. However, applying an authentication mechanism or blacklisting domains for all devices leaves the door open to malware.
See Also: Expel: Firms Still Threatened by Old Vulnerabilities
Intelligent control requires filtering at the client level (microsegmentation), which is complex to set up and manage using firewalls but can be simpler using DNS services.
This session will discuss:
- How DNS offers real-time analytics on client behavior due to it having near 100% application traffic visibility;
- Why allowing specific users to access to selected apps adds granularity to policies applied;
- Uses of client grouping, blacklisting, and whitelisting for improving access control and defeating insider threats.