Zero Trust Architecture (ZTA) Expert Group

Back to discussions
Expand all | Collapse all

ZTA Expert Group Meeting Minutes 7/19

  • 1.  ZTA Expert Group Meeting Minutes 7/19

    Posted Jul 20, 2022 04:18:00 PM

    Hello all,

    Thank you for the thoughtful discussion yesterday. The meeting minutes have been updated and can be found here: https://drive.google.com/drive/folders/1fc9g7vUEuDA3qLDLk-0xoH12e_ZHRkA8 

    The recording for this meeting and future meetings can be found in the Library of the ZTA SME Circle group, along with the agendas/ meeting minutes, and other relevant ZTA artifacts, such as the charter. The Circle group is invite-only, so if you do not have access to this group, please let us know ASAP and we can get that resolved. 

    All Modules for the ZTA Training as well as the ZTA Glossary can be found here: https://drive.google.com/drive/folders/1RRq8MTFh19NCxw8bf5FH8Qito31mEC3F?usp=sharing

    Note: The SDP_Architecture_Guide pdf is attached below and please find the SDP Spec 2 link below. Please read both artifacts as well as modules 1-5 to get a good concept of the ZTA/SDP training.

    SDP Spec v2 Publishedcan be found here:https://cloudsecurityalliance.org/artifacts/software-defined-perimeter-zero-trust-specification-v2/

    ZTA/ZT/SDP Resources Folderhttps://drive.google.com/drive/folders/10MWGbKutdSLYcCkC1IAMSJVO6apBXp4R?usp=sharing

    Action Points (APs):

    1. Assigned to all, please review Module 5 (new draft) and provide comments/feedback by 7/26. 

      1. Link:https://docs.google.com/document/d/1d244goX54tGXbp22At_YPNEHn4kGLILQhTHE6g3Z0hA/edit?usp=sharing

    2. Henrich, please review section 5.1 Document Transaction Flows for TOGAF by 7/26. 

    3. Dr. Ron Martin was assigned to look into Trusted Internet Connections, and inform the Group about it by 7/26. 

    4. Alex Sharpe was assigned to provide some text about the GAP Analysis for group consideration by 7/26. 

    5. Mark Schlicting, please consider the 5.4 unit title by 7/26. 

    6. 5.1 Planning Considerations

      1. Mark Schlicting and Sky, please review this text in 5.1 that Alex Sharpe, Mark Schlictin, and Aky worked on by 7/26.

    7. 5.2 Scope & Priority

      1. Emilio, please continue to work on this section and subsections by 7/26.

      2. Use Cases Examples

        1. Shruti, please continue to work on this subsection by 7/26.

    8. 5.3 Protect Surface

      1. Shruti, Sky, and Mark Schlicting, please continue to work on this section and subsections by 7/26. 

        1. Please go through what already exists, and decide what to use. 

    9. 5.5 Define the SDP Policies 

      1. Prasad, please consider making this more ZT focus vs. SDP when working on this section by 7/26.

    10. 5.6 Develop the Conceptual Architecture

      1. Michael Herndon and Clement, please continue to work on this section and subsections by 7/26.

        1. Please go through what already exists, and decide what to use.

    11. 5.7 ZTA Production Readiness Planning: Monitor & Maintain

      1. Sanjeev, please continue to work on this section and subsections by 7/26.

        1. Please go through what already exists, and decide what to use.

    12. 5.8 Planning for Application Release & DevOps Secure Remote Access

      1. Matt Lee and Alex Sharpe, please continue to work on this section and subsections by 7/26.

      2. Farid, please continue to work on this section and provide some content by 7/26.

    13. Peter HJ van, please suggest a deployment model per your suggestion for Module 3 by 7/26.

      1. Hairpin or trombone architectures. This would REALLY benefit from having a nice deployment diagram.



    ------------------------------
    Reza Safari
    Training administration intern
    CSA
    ------------------------------