ZERO-TRUST-EDI
"Never trust, always verify" applied to cloud-native EDI.
Definition
For EDI: mTLS everywhere (service-to-service, partner-to-service), JWT or mTLS for internal APIs, fine-grained ACL per resource, ephemeral secrets, audit of every action. Implemented via Istio/Linkerd at the mesh layer, SPIRE/SPIFFE at the service identity layer.
Origin
Concept popularised by Forrester (John Kindervag) in 2010, formalised by NIST SP 800-207 in 2020.
Example in context
An EDIFACT parser accepting connections ONLY with a SPIFFE identity "spiffe://acme.com/edi/parser".
Related terms
- mTLS — cryptographic foundation of zero-trust.