glossary

What is zero trust?

Source-cited RoleMath page about What is zero trust?.

Build my personalized career plan

Researched by RoleMath Research. Every figure on this page traces to the official source shown next to it.

What is zero trust?

Zero trust is a security model that assumes no user, device, or network segment is trusted by default. Every access request is verified individually and granted the minimum access needed, even from inside the network.

What it means

NIST describes zero trust as a set of principles for making accurate, least-privilege access decisions while treating the network as potentially compromised. In plain terms, "never trust, always verify": identity and context are checked on every request rather than trusting anything just because it is already inside the firewall. It shows up in modern cloud, identity, and security roles.

Sources

  • National Institute of Standards and Technology — NIST CSRC Glossary: https://csrc.nist.gov/glossary

Citation Ledger

IDSupportsEvidenceSource
CIT-01Definition source for What is zero trust?Official source pageNational Institute of Standards and Technology — NIST CSRC Glossary

Ready to see how this fits your background?

RoleMath planner