Zero Trust: How the security model that trusts no one works

Tiempo de lectura: 6 minutos

Exchanges have been hacked, funds have disappeared, and keys have been compromised. In many cases, it wasn’t due to a lack of technology, but because the system assumed that whoever was inside was trustworthy.

In an environment where traditional perimeters have dissolved, implicit trust is an attacker’s greatest asset. Zero Trust starts from the opposite premise to eliminate that advantage by automating strict, continuous, real-time control. Under this model, the rule is categorical: never trust, always verify. It no longer matters what position you hold in the organization; security is measured by your ability to prove, at every step, that you are who you say you are.

bitnovo_exchanges_hacked_funds

In Crypto, a Security Breach Cannot Be Undone

Unlike the traditional financial system, where a fraudulent transfer can be frozen or canceled, the immutability of the blockchain offers no second chances. If an attacker breaches the system, funds disappear in seconds.

This factor raises the cost of any breach to critical levels. Zero Trust does not eliminate the risk of suffering an attack, but it drastically reduces the exposure surface and limits potential damage. The model assumes in advance that a wallet, a cross-chain bridge, or a smart contract could be compromised at any time.

Instead of granting free rein after an initial validation, it fragments the risk to ensure that a single failure does not mean the total loss of assets. To understand how this level of rigor was reached, we must first look at the model we are trying to leave behind.

bitnovo_blockchain_immutability_funds

The Castle Model That No Longer Works

For many years, companies focused on protecting their network perimeters with security controls. Under this traditional security approach, an internal network was built protected by a firewall, where everything inside was considered safe and trustworthy, granting free access to applications, data, and resources.

The big problem is that this model mistakenly assumes that threats come exclusively from the outside and that the interior is intrinsically secure. Major exchange hacks have followed precisely that pattern: an attacker breaches the perimeter, accesses a single point, and by exploiting the implicit trust by default, moves laterally with total freedom until locating and compromising the funds.

Today, with remote employees, cloud services, and decentralized applications, the network perimeter has completely disappeared, forcing the industry to seek a completely new approach.

bitnovo_castle_model_firewall

John Kindervag and the Model That Changed Network Security

The solution to this perimeter void arrived in 2010. Zero Trust was not born as a commercial product or specific software, but as a strategic model formulated by John Kindervag while working as an analyst at Forrester Research. His proposal demolished the concept of physical boundaries and introduced a framework designed to protect resources individually.

Kindervag’s principle was direct: treat every connection request, user, or device as a potential threat from second one, regardless of its location. For this framework to work, validation must be strict, dynamic, and evaluate contextual variables in real time: who is requesting access, what device they are using, where they are connecting from, and what level of risk they represent. This vision transformed security theory, structuring itself around three unbreakable operational rules.

bitnovo_john_kindervag_forrester

The Three Principles That Underpin It

The entire Zero Trust architecture rests on three fundamental rules that eliminate security assumptions:

Principle

 How it works

Example
Continuous validation No one maintains indefinite access. Each request is re-evaluated in real time, analyzing device, location, and behavior. If you change networks or countries after logging in, the system blocks the session and demands re-authentication.
Least privilege The minimum necessary access for a specific task is granted. Once finished, permissions are revoked. An editor can access only their draft for two hours; they cannot view exchange wallets or change configuration.
Breach assumption The system operates assuming it has already been compromised. The network is segmented to stop lateral movement. If a hacker compromises the web interface, micro-segmentation prevents them from jumping to the smart contracts where the funds are located.

IAM, MFA, and Micro-segmentation: The Pieces That Make It Work

To put the Zero Trust philosophy into practice, specific technical tools are needed to automate strict network control. These are the four key pieces:

Technical Piece

 What it does

Why it is vital
IAM (Identity Management) Assigns and validates a unique identity for each user and device. No one enters anonymously; the system knows exactly who and what is trying to connect.
MFA (Multi-Factor Authentication) Requires multiple verification methods to grant access. A stolen password is not enough. A hacker would also need your fingerprint or physical security token.
Micro-segmentation Divides the network into small, watertight zones isolated from each other. If an attacker compromises a segment, the breach is contained and cannot jump to the rest of the system.
Continuous Monitoring Analyzes behavior and traffic in real time. Any anomaly triggers an automatic response, immediately blocking the suspicious connection.

The Five Pillars of Zero Trust

Protecting the network is not enough if the device is insecure, nor is verifying the device useful if the data is not classified. Therefore, the model is divided into five critical areas that work in sync:

  • Identity:Responsible for thoroughly verifying users requesting access using tools like IAM and MFA.
  • Devices:Examines and controls every computer, mobile phone, or server attempting to connect. If the terminal is not registered or is insecure, access is blocked.
  • Networks:Isolates the infrastructure through micro-segmentation and encrypts all traffic, so an attacker cannot see or touch valuable resources.
  • Applications:Monitors programs and APIs in real time. Eliminates static access and demands continuous dynamic validation while the session lasts.
  • Data:The ultimate goal. Sensitive information is classified and protected through encryption, whether stored, in use, or traveling across the network.

bitnovo_continuous_validation_mfa

Exchanges, Custodians, and DeFi: Where It Is Applied

This pillar-based structure is what allows platforms managing cryptocurrencies to operate securely in a complex environment, marked by remote work, interconnected applications, and open APIs. In the crypto sector, Zero Trust brings theory down to business practice on three critical fronts:

  • Verification of every access:It doesn’t matter if the request comes from the company’s director or an external application; everyone must prove their identity every time they try to enter a system.
  • Segmentation of critical systems:Platforms divide their infrastructure into independent parts. Thus, the panel where an employee answers support queries is completely isolated from the servers controlling wallets and funds.
  • Continuous monitoring:The system analyzes behavior in real time. If an automated tool or a user tries to do something unusual, the platform instantly blocks the action.

For this reason, institutional custodians and regulated exchanges already apply Zero Trust principles. They do so not only to safeguard their users’ capital but also to comply with the industry’s most demanding international security regulations and requirements.

bitnovo_minimum_privilege_access

Why Zero Trust Costs More to Implement Than It Seems

Despite its evident advantages, adopting a Zero Trust architecture is not about buying a software license or installing a magic solution overnight; it is a gradual, long-term effort. The main obstacles to its real deployment in organizations are usually not technical but operational:

  • Legacy infrastructure:Much of current systems were designed under the old perimeter model and do not easily assimilate dynamic controls.
  • Cultural resistance:It forces IT teams to change already established routine processes, generating operational friction if the transition is not managed well.
  • Organizational change:Requires absolute commitment from management to redefine company policies from scratch. It is not an isolated technology project; it is a transformation in security culture.

bitnovo_microsegmentation_networks

In fact, Zero Trust is not an absolute guarantee of infallibility, but rather a way of designing systems assuming that things will fail.

Leave a comment
Your email address will not be published. Required fields are marked *

    Receive the latest cryptocurrency news and the most popular articles directly in your inbox.


    In accordance with the GDPR and the LOPDGDD, PRESSBROKERS S.L. will process the data provided for the purpose of sending communications to subscribers. For more information about how we process your data and how to exercise your data protection rights, please refer to our privacy policy.