Security of Zero Trust Networks in Cloud Computing: A Comparative Review

Sirshak Sarkar, Gaurav Choudhary, Shishir Kumar Shandilya, Azath Hussain and Hwankuk Kim ()
Additional contact information
Sirshak Sarkar: School of Computing Science and Engineering, VIT Bhopal University, Bhopal 466114, Madhya Pradesh, India
Gaurav Choudhary: DTU Compute, Department of Applied Mathematics and Computer Science, Technical University of Denmark, 2800 Kongens Lyngby, Denmark
Shishir Kumar Shandilya: School of Computing Science and Engineering, VIT Bhopal University, Bhopal 466114, Madhya Pradesh, India
Azath Hussain: School of Computing Science and Engineering, VIT Bhopal University, Bhopal 466114, Madhya Pradesh, India
Hwankuk Kim: Department of Information Security Engineering, Sangmyung University, Cheonan 31066, Korea

Sustainability, 2022, vol. 14, issue 18, 1-21

Abstract: Recently, networks have shifted from traditional in-house servers to third-party-managed cloud platforms due to its cost-effectiveness and increased accessibility toward its management. However, the network remains reactive, with less accountability and oversight of its overall security. Several emerging technologies have restructured our approach to the security of cloud networks; one such approach is the zero-trust network architecture (ZTNA), where no entity is implicitly trusted in the network, regardless of its origin or scope of access. The network rewards trusted behaviour and proactively predicts threats based on its users’ behaviour. The zero-trust network architecture is still at a nascent stage, and there are many frameworks and models to follow. The primary focus of this survey is to compare the novel requirement-specific features used by state-of-the-art research models for zero-trust cloud networks. In this manner, the features are categorized across nine parameters into three main types: zero-trust-based cloud network models, frameworks and proofs-of-concept. ZTNA, when wholly realized, enables network administrators to tackle critical issues such as how to inhibit internal and external cyber threats, enhance the visibility of the network, automate the calculation of trust for network entities and orchestrate security for users. The paper further focuses on domain-specific issues plaguing modern cloud computing networks, which leverage choosing and implementing features necessary for future networks and incorporate intelligent security orchestration, automation and response. The paper also discusses challenges associated with cloud platforms and requirements for migrating to zero-trust architecture. Finally, possible future research directions are discussed, wherein new technologies can be incorporated into the ZTA to build robust trust-based enterprise networks deployed in the cloud.

Keywords: zero trust; cloud security; zero-trust cloud networks; cloud computing; zero-trust models (search for similar items in EconPapers)
JEL-codes: O13 Q Q0 Q2 Q3 Q5 Q56 (search for similar items in EconPapers)
Date: 2022
References: View complete reference list from CitEc
Citations:

Downloads: (external link)
https://www.mdpi.com/2071-1050/14/18/11213/pdf (application/pdf)
https://www.mdpi.com/2071-1050/14/18/11213/ (text/html)

Related works:
This item may be available elsewhere in EconPapers: Search for items with the same title.

Export reference: BibTeX RIS (EndNote, ProCite, RefMan) HTML/Text

Persistent link: https://EconPapers.repec.org/RePEc:gam:jsusta:v:14:y:2022:i:18:p:11213-:d:909109

Access Statistics for this article

Sustainability is currently edited by Ms. Alexandra Wu

More articles in Sustainability from MDPI
Bibliographic data for series maintained by MDPI Indexing Manager ().