关键词: 零信任, SDP, 持续验证, 动态授权, 全局防御

Abstract: With the vigorous development of digital industrialization and industrial digitization, the formation of a new datadriven digital industry system is accelerating. The wave of industrial digitization not only opens the door to business model reconstruction and industrial transformation and upgrading, but also brings many severe security challenges to enterprises. Enterprises urgently need a new generation of information security protection system to support digital transformation. The zerotrust architecture and guidance model have made significant progress to become a mainstream security model, which is gradually recognized and valued by an increasing number of government agencies and enterprise customers. This paper mainly analyzes the security problems brought by digital transformation and the characteristics of the zerotrust security architecture. In addition, it elaborates on the architecture characteristics through scenariospecific practices. Finally, it shares typical application cases, discusses the value of zero trust to users, and concludes that the zerotrust architecture can meet existing and future service security needs so as to provide a reliable and solid guarantee for digital transformation.

Key words: zero trust, SDP, continuous verification, dynamic authorization, global defense