zero-trust-architecture
zero-trust-architecture copied to clipboard
Don't Trust Any Content
I am not sure if you are still taking comments, but here goes...
Principle 7 says "Don't trust any network between the device and the service it's accessing, this includes the local network". Inline with other NCSC principles, scuh as the secure communication principles, and cross domain principles, should this be extended to include: "Don't trust any content shared between networks"?