aTrust-image-Singapore

Highlights
Verified users, compliant endpoints, secure network access, and granular permission control.

Detail
Introduced by John Kindervag in 2010 during his tenure as a principal analyst at Forrester Research, Zero Trust architecture is a comprehensive security framework designed to protect an organization’s most critical assets. It is based on the assumption that all users, devices, and connections are untrusted by default, addressing threats from both inside and outside the network.

Sangfor aTrust implements a complete Zero Trust model through end-to-end security pillars covering identity, endpoints, networks, behavior analysis, continuous trust assessment, and dynamic access control.

The solution includes a built-in lightweight Identity and Access Management (IAM) system, with the option to integrate external IAM platforms for centralized identity management and provisioning. Users authenticate using a unified identity token.

Multiple authentication methods are supported, including passwords, SMS, TOTP, digital certificates, and mobile app QR codes, reducing reliance on a single factor and lowering the risk of credential misuse.

Authentication policies are dynamically adjusted based on user security posture, access context, behavioral patterns, and resource sensitivity. This enables flexible experiences such as one-click access, no secondary verification, or enhanced authentication, balancing strong security with user convenience.