Law.com Subscribers SAVE 30%

Call 855-808-4530 or email [email protected] to receive your discount on a new subscription.

'Never Trust, Always Verify': Zero Trust Security

By Rebecca L. Warren
January 01, 2022

Once upon a time, before the age of computers, when a business needed to secure and protect information and assets, discussions centered on limiting physical access to offices, paper files, and tangible documents. Locked file cabinets, restricted areas, and limited personnel access were the order of the day.

As computers gained a foothold in the business world and the internet became mainstream, new challenges arose. How was a business to protect non-tangible information that existed in this new, unseen, uncharted universe called the internet? Emphasis was placed on protecting internal business information, systems, and assets from outside attackers. Firewalls, antivirus, and passwords were deployed to prevent malicious actors from breaching the business perimeter and gaining internal access. This traditional network security followed the "Trust but Verify" method, in which internal users and endpoints within the business' perimeter were automatically trusted once their log-in credentials were validated. Unfortunately, as both technology and hackers advanced, the "trust but verify" approach has proven inadequate to protect against internal bad actors or external hackers.

In the last few years, business infrastructures have grown increasingly complex, cloud storage and computing have become standard, and a remote workforce has essentially materialized overnight. As a result, cybersecurity attacks are increasing exponentially, and no business, agency, infrastructure, or government is immune. Most will readily admit that their cybersecurity defense has been inadequate at best and "business as usual" approaches are woefully ineffective. Indisputably, newer, more sophisticated approaches should be considered to provide greater protection to businesses.

This premium content is locked for Entertainment Law & Finance subscribers only

  • Stay current on the latest information, rulings, regulations, and trends
  • Includes practical, must-have information on copyrights, royalties, AI, and more
  • Tap into expert guidance from top entertainment lawyers and experts

For enterprise-wide or corporate acess, please contact Customer Service at [email protected] or 877-256-2473

Read These Next
Major Differences In UK, U.S. Copyright Laws Image

This article highlights how copyright law in the United Kingdom differs from U.S. copyright law, and points out differences that may be crucial to entertainment and media businesses familiar with U.S law that are interested in operating in the United Kingdom or under UK law. The article also briefly addresses contrasts in UK and U.S. trademark law.

Strategy vs. Tactics: Two Sides of a Difficult Coin Image

With each successive large-scale cyber attack, it is slowly becoming clear that ransomware attacks are targeting the critical infrastructure of the most powerful country on the planet. Understanding the strategy, and tactics of our opponents, as well as the strategy and the tactics we implement as a response are vital to victory.

The Article 8 Opt In Image

The Article 8 opt-in election adds an additional layer of complexity to the already labyrinthine rules governing perfection of security interests under the UCC. A lender that is unaware of the nuances created by the opt in (may find its security interest vulnerable to being primed by another party that has taken steps to perfect in a superior manner under the circumstances.

Removing Restrictive Covenants In New York Image

In Rockwell v. Despart, the New York Supreme Court, Third Department, recently revisited a recurring question: When may a landowner seek judicial removal of a covenant restricting use of her land?

Fresh Filings Image

Notable recent court filings in entertainment law.