Abstract: Amid the wave of digital transformation, the traditional boundarybased network security model is increasingly ineffective in dynamic and border less environments. The United States has taken the lead in restructuring its cybersquatting system through a systematic zerotrust strategy, and its trinity practice path of “policytechnologyecology” is of reference significance for China to build a digital security barrier. This paper uses case analysis and policy comparison methods to deeply analyze the toplevel design logic, core technological breakthrough points, and ecological coordination mechanisms of the U.S. zerotrust strategy, revealing its essence of transitioning from “passive protection” to “active immunity”. Based on a deep diagnosis of the complexity of China’s ultralargescale network ecosystem, the shortcomings in the autonomy of core technologies, and the challenges of data sovereignty governance, this paper proposes a Chinesestyle “fourdimensional integrated” implementation path: breaking the fragmented dilemma with systematic toplevel design; breaking through technological bottlenecks with the integration of national cryptography and AIdriven technologies; building a security ecosystem with costsharing and standard leadership through governmententerprise collaboration; and addressing implementation limitations with scenario classification and privacy enhancement. The study emphasizes that China needs to innovate on the basis of reference, take zero trust as an important engine for building a digital security barrier, and balance the needs of security protection with the development of the digital economy.

Key words: zero trust architecture, digital security barrier, dynamic identity governance, data sovereignty, policydriven

摘要： 数字化转型浪潮下，传统基于边界的网络安全防护模式在动态无界环境中逐渐失效.美国通过系统性零信任战略率先重构其网络安全体系，其“政策－技术－生态”三位一体的实践路径对我国构建数字安全屏障具有借鉴意义.采用案例分析与政策比较方法，深入剖析美国零信任战略的顶层设计逻辑、核心技术突破点与生态协同机制，揭示其从被动防护向主动免疫跃迁的本质.基于对我国超大规模网络生态复杂性、核心技术自主性短板及数据主权治理挑战的深度诊断，提出中国特色的“四维一体”实施路径：以系统性顶层设计破解碎片化困局；以国密融合与AI驱动突破技术瓶颈；以政企协同的成本分摊与标准引领构建安全生态；以场景分级与隐私增强应对落地局限.研究强调，中国需在借鉴基础上创新，将零信任作为构建数字安全屏障的重要引擎，平衡安全防护与数字经济发展需求.

关键词: 零信任架构, 数字安全屏障, 动态身份治理, 数据主权, 政策驱动