Zero Trust Security
| AID | 27 |
|---|---|
| Category | Data |
| Function | Access Determination |
| Optimal Security | The Organization’s access to data is dynamic, supporting just-in-time and just-enough principles, and continual risk-based determinations. |
| Advanced Security | The Organization governs access to data using least privilege controls that consider identity, device risk, and other attributes. |
| Traditional Security | The Organization governs access to data by using static access controls. |
| Guidance | The Organization data should be protected on devices, in applications, and networks. Organizations should inventory, categorize, and label data, protect data at rest and in transit, and deploy mechanisms for detection data exfiltration. |
Review this entry