Which of the following is NOT a guiding principle of Zero Trust?

Disable ads (and more) with a membership for a one time $4.99 payment

Study for the Microsoft SC-900 Exam. Master key concepts with targeted flashcards and multiple-choice questions, featuring hints and explanations. Get prepared and confident for success!

The principle of "Trust but verify" is not a guiding tenet of Zero Trust. Instead, Zero Trust emphasizes that organizations should never implicitly trust any user or system, even if they are inside the network perimeter. The philosophy of Zero Trust is centered around the idea of continuous verification and validation.

In a Zero Trust model:

  • "Assume breach" suggests that organizations should operate with the mindset that a breach could occur at any time, focusing on preventing lateral movement within the network.
  • "Verify explicitly" highlights the necessity to authenticate and authorize every access request based on various factors, including user identity, device health, and location.
  • "Least privilege access" means granting users only the permissions necessary to perform their jobs, minimizing the risk of potential harm from compromised accounts.

These principles are crucial for establishing robust security infrastructure in today’s increasingly complex threat landscape. In contrast, the concept of "Trust but verify" implies a level of initial trust, which contradicts the foundational premise of Zero Trust.

More Multiple Choice Questions