Zero Trust Architecture (ZTA) Expert Group

ZTA Expert Group Meeting Minutes 8/2

  • 1.  ZTA Expert Group Meeting Minutes 8/2

    Posted Aug 03, 2022 02:27:00 PM

    Hello all,

    Thank you for the thoughtful discussion yesterday. The meeting minutes have been updated and can be found here: https://drive.google.com/drive/folders/1fc9g7vUEuDA3qLDLk-0xoH12e_ZHRkA8 

    The recording for this meeting and future meetings can be found in the Library of the ZTA SME Circle group, along with the agendas/ meeting minutes, and other relevant ZTA artifacts, such as the charter. The Circle group is invite-only, so if you do not have access to this group, please let us know ASAP and we can get that resolved. 

    All Modules for the ZTA Training as well as the ZTA Glossary can be found here: https://drive.google.com/drive/folders/1RRq8MTFh19NCxw8bf5FH8Qito31mEC3F?usp=sharing

    Note: The SDP_Architecture_Guide pdf is attached below and please find the SDP Spec 2 link below. Please read both artifacts as well as modules 1-5 to get a good concept of the ZTA/SDP training.

    SDP Spec v2 Publishedcan be found here:https://cloudsecurityalliance.org/artifacts/software-defined-perimeter-zero-trust-specification-v2/

    ZTA/ZT/SDP Resources Folderhttps://drive.google.com/drive/folders/10MWGbKutdSLYcCkC1IAMSJVO6apBXp4R?usp=sharing

    Action Points (APs):

    1. Assigned to all, please review Module 5 (new draft) and provide comments/feedback by 8/9. 

      1. Link:https://docs.google.com/document/d/1d244goX54tGXbp22At_YPNEHn4kGLILQhTHE6g3Z0hA/edit?usp=sharing

    2. 5.1 Planning Considerations

      1. Mark Schlicting and Sky, please review this text in 5.1 that Alex Sharpe, Mark Schlictin, and Aky worked on by 8/9.

    3. 5.3- Scope & Priority

      1. Emilio, please continue working on this section by 8/9. 

      2. Shruti, please continue working on the Uses Cases in this section by 8/9.  

    4. 5.4 Protect Surface

      1. Shruti, please work on this section by 8/9.

    5. 5.5 Document Transaction Flows

      1. Data Considerations

        1. Prasad, please look and decide where to insert the User/User group planning and Application grouping text by 8/9.

      2. Mark Schlicting, please work on a diagram in this section by 8/9.

      3. Henrich, please review for mention of "Access" in this module by 8/9.

    6. 5.6 Define the PEP Polices

      1. Prasad, please review this section about policy or PEP policy by 8/9.

      2. Michael Herndon and Clement, please continue to work on this section and subsections by 8/9.

        1. Please go through what already exists, and decide what to use.

    7. 5.7 Develop the Conceptual Architecture

      1. Michael Herndon and Clement please continue your work in this section and flush out the text by 8/9.

    8. 5.8 ZTA Production Readiness Planning: Monitor & Maintain

      1. Sanjeev, please continue to work on this section and subsections by 8/9.

        1. Please go through what already exists, and decide what to use.

    9. 5.9 Planning for Application Release & DevOps Secure Remote Access

      1. Matt Lee and Alex Sharpe, please continue to work on this section and subsections by 8/9.

      2. Farid, please continue to work on this section and provide some content by 8/9.



    ------------------------------
    Reza Safari
    Training administration intern
    CSA
    ------------------------------