Them: How do we add zero trust to this

Reply to Them: How do we add zero trust to this on Wed, 20 May 2026 06:09:11 GMT

reynir@social.data.coop — Wed, 20 May 2026 06:09:11 GMT

@sam @petrillic what I gathered from talking to a vendor at a security conference is that it's definitely not VPNs no matter the context when I told him that we had reimplemented parts of the OpenVPN protocol.

Reply to Them: How do we add zero trust to this on Tue, 19 May 2026 19:43:20 GMT

reedmideke@mastodon.social — Tue, 19 May 2026 19:43:20 GMT

@petrillic "Well, my trust in your organization already dropped significantly, throw in some post-quantum AI blockchain and I bet we can get to zero"

Reply to Them: How do we add zero trust to this on Tue, 19 May 2026 17:34:36 GMT

petrillic@hachyderm.io — Tue, 19 May 2026 17:34:36 GMT

@Emily sadly, I can't disagree. This is why I continue to try and push for new ideas and new approaches. We've tried the same thing over and over, and failed. At some point, let's try something new, and potentially still fail, but at least maybe learn something.

Reply to Them: How do we add zero trust to this on Tue, 19 May 2026 17:28:39 GMT

brass75@twit.social — Tue, 19 May 2026 17:28:39 GMT

@Emily @petrillic that's the only way to have good security. It's not something that can be effectively bolted on - it needs to be part of the design from day 1.

Reply to Them: How do we add zero trust to this on Tue, 19 May 2026 17:27:32 GMT

emily@infosec.exchange — Tue, 19 May 2026 17:27:32 GMT

@petrillic

I've rarely worked at a place where they let you build in security from the start, rather than something they think they can add after everything else is done.

And almost nobody, no matter the industry, will make an asset inventory for me to use.

Reply to Them: How do we add zero trust to this on Tue, 19 May 2026 16:31:52 GMT

sam@gts.tabby.rocks — Tue, 19 May 2026 16:31:52 GMT

@petrillic there are a ton of cool cryptographic widgets coming down the pipe to be excited about, like zero-knowledge proofs, homomorphic encryption, etc. too!

Reply to Them: How do we add zero trust to this on Tue, 19 May 2026 16:25:47 GMT

petrillic@hachyderm.io — Tue, 19 May 2026 16:25:47 GMT

@sam correct, it should have eto establish trust as well. Certificates are part of it, but it's inadequate. Unfortunately, i don't think the industry has really grappled with this.

Reply to Them: How do we add zero trust to this on Tue, 19 May 2026 15:24:36 GMT

petrillic@hachyderm.io — Tue, 19 May 2026 15:24:36 GMT

@sam part of the challenge is that vendors have weaponized the terminology to describe whatever new product or feature they're peddling.

My distillation is: 1) Everything secure always; 2) Everything means everything, no implicit trust; 3) Access is granted per-session/request and strictly enforced, explicit trust; 4) Policy and decisions account for all available surveillance data.

Reply to Them: How do we add zero trust to this on Tue, 19 May 2026 14:44:02 GMT

rnd@toot.cat — Tue, 19 May 2026 14:44:02 GMT

@petrillic *tells everyone to stop trusting the service* there, zero trust added

Reply to Them: How do we add zero trust to this on Tue, 19 May 2026 14:37:49 GMT

maya_b@hachyderm.io — Tue, 19 May 2026 14:37:49 GMT

@petrillic

"what if you shard it?"

(as long as we're being serious about it)

Reply to Them: How do we add zero trust to this on Tue, 19 May 2026 14:37:17 GMT

petrillic@hachyderm.io — Tue, 19 May 2026 14:37:17 GMT

@maya_b do you want scaled agile? Because this is how you get scaled agile.

Reply to Them: How do we add zero trust to this on Tue, 19 May 2026 14:27:08 GMT

maya_b@hachyderm.io — Tue, 19 May 2026 14:27:08 GMT

@petrillic

"but agile..."