Zero Trust Data Protection is a new security framework created by Netskope, whereby the key principles of zero trust are applied to data protection. The zero trust concept has existed for quite some time and essentially means “do not trust anything you’re not required to trust and verify everything that must be trusted.” Following this logic, Zero Trust Data Protection is the concept of not inherently trusting any user, device, application, or service with given access to one’s data. Instead, access to data is granted on a contextually-aware, least-privileged basis that is continually assessed and dynamically adapted.
In terms of Zero Trust Data Protection, and in particular the concept of least-privileged access, think of your data in the cloud as a building full of rooms with locked doors and each lock has its own individual key and you only grant users access only to the room with the exact data that they need and nothing else.
While this concept is usually applied towards access to networks, devices, and servers, the rapid growth of cloud computing has shifted the requirements of zero trust towards data protection. It’s not enough to apply these principles to networks when data is not stored locally as often and is, instead, stored across numerous SaaS, IaaS, and PaaS clouds, as well as websites, private apps, and devices.