Conventional network security situation assessment provides a decision-making basis for enterprise security risk management.According to the basic principles of zero-trust security,this paper first analyzes the connotation,goal and significance of zero-trust security situation assessment,and then puts forward a zero-trust security access architecture based on continuous risk assessment.Around this architecture,it studies key technologies of zero-trust security situation assessment,focuses on context security assessment for user access,constructs and designs an extensible situation assessment index system as well as a quantitative assessment algorithm,provides continuous assessment capabilities for achieving dynamic fine-grained access control under the zero-trust paradigm,and finally summarizes the future development trend of zero-trust situation assessment.
NETL
NSTL
万方数据
维普
