零信任平台方案及关键技术

摘要：零信任平台由“中心+组件+服务”三大部分构成，以平台形式充分融合软件定义边界（SDP）、身份与访问管理（IAM）、微隔离（MSG）的技术方案优势，通过关键技术的创新，实现最佳可信访问控制和安全隔离，为用户在业务层、数据层、终端层的访问达到“从不信任，始终验证”的安全效果，提升整体安全水平的同时降低了安全复杂性和运营开销。

关键词：零信任平台；SDP；IAM；MSG

Abstract: The zero-trust platform is composed of three major parts: "center + component + service”, which fully integrates the technical advantages of Software Defined Perimeter (SDP), Identity and Access Management (IAM), and Micro-Segmentation Gatekeeper (MSG) as a platform. Through key technological innovation, this platform achieves the best-trusted access control and security isolation, and achieves the effect of "never trust, always verify" for user access at the business layer, data layer, and terminal layer, improving the overall security level while reducing security complexity and operating expenses.

Keywords: zero-trust platform; SDP; IAM; MSG