{"id":3677,"date":"2025-06-19T05:01:57","date_gmt":"2025-06-19T05:01:57","guid":{"rendered":"https:\/\/certera.com\/blog\/?p=3677"},"modified":"2025-06-19T05:01:58","modified_gmt":"2025-06-19T05:01:58","slug":"nist-publishes-new-zero-trust-implementation-guidance-to-build-zta-sp-1800-35","status":"publish","type":"post","link":"https:\/\/certera.com\/blog\/nist-publishes-new-zero-trust-implementation-guidance-to-build-zta-sp-1800-35\/","title":{"rendered":"NIST Publishes New Zero Trust Implementation Guidance: 19 Ways to Build ZTA (SP 1800-35)"},"content":{"rendered":"\n<p class=\"wp-block-paragraph\">If you\u2019re still relying on a perimeter firewall to protect your network\u2026 you\u2019re already behind. The way we work has changed. Remote teams, cloud apps, and mobile devices they\u2019ve all shattered the traditional idea of a secure network boundary. <\/p>\n\n\n\n<p class=\"wp-block-paragraph\">That\u2019s where <a href=\"https:\/\/certera.com\/blog\/what-is-zero-trust-security-understand-security-mode-benefits-examples\/\">Zero Trust Architecture (ZTA)<\/a> comes in. And NIST just released a powerful new guide to help you implement it right.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"h-what-is-nist-and-why-should-you-care\">What Is NIST and Why Should You Care?<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">If you&#8217;re in cybersecurity, compliance, or IT, you&#8217;ve likely come across the acronym NIST. But what exactly is it? NIST stands for the National Institute of Standards and Technology. It\u2019s a U.S. government agency that helps industries maintain security, accuracy, and compliance with standards.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">In simple terms, NIST creates the playbooks and frameworks that many government agencies and private companies follow for cybersecurity. <\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>Some of their most widely used publications include:<\/strong><\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li><a href=\"https:\/\/certera.com\/blog\/nist-cybersecurity-framework-2-0-the-gold-standard-for-proactive-cyber-defense\/\">NIST Cybersecurity Framework (CSF)<\/a><\/li>\n\n\n\n<li>NIST SP 800-53 (Security and Privacy Controls)<\/li>\n\n\n\n<li>NIST SP 800-171 (Protecting Controlled Unclassified Information)<\/li>\n\n\n\n<li>NIST SP 800-207 (Zero Trust Architecture conceptual model)<\/li>\n<\/ul>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"h-main-points-first\">Main Points First<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">NIST released SP 1800-35, a detailed guide that showcases real-world Zero Trust implementations using actual technology.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">The guide includes 19 hands-on examples developed over 4 years with 24 industry partners.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">SP 1800-35 builds on SP 800-207, shifting from conceptual ideas to practical, step-by-step blueprints.<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>No two networks are the same. ZTA must be customised to fit each organization.<\/li>\n\n\n\n<li>Zero Trust means no implicit trust. Every user, device, and action must be verified continuously.<\/li>\n\n\n\n<li>It prevents attackers from moving laterally or gaining elevated privileges after an initial breach.<\/li>\n\n\n\n<li>The NCCoE team built and tested each model, solving real-world problems and sharing best practices.<\/li>\n\n\n\n<li>Every solution aligns with the NIST Cybersecurity Framework and SP 800-53 standards, supporting compliance.<\/li>\n\n\n\n<li>It recommends starting with identity management &amp; <a href=\"https:\/\/certera.com\/blog\/common-multi-factor-authentication-mfa-risk-and-vulnerabilities\/\">multi-factor authentication (MFA)<\/a>, then expanding in phases.<\/li>\n\n\n\n<li>Zero Trust is a journey, not a one-time setup; it must evolve with new threats and technologies.<\/li>\n<\/ul>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"h-what-is-zero-trust\">What Is Zero Trust?<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">Zero Trust is a mindset shift. Instead of assuming everything inside your network is safe, Zero Trust assumes <strong>nothing is trusted by default.<\/strong> Every access request, no matter where it comes from, must be <strong>verified, validated, and continuously monitored.<\/strong><\/p>\n\n\n\n<p class=\"wp-block-paragraph\">You\u2019ve heard the concept before. But here\u2019s the challenge: How do you build it? That\u2019s where <strong>NIST\u2019s new publication SP 1800-35 <\/strong>comes in.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"h-what-did-nist-release-and-why-does-it-matter\">What Did NIST Release (and Why Does It Matter)?<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">The <strong>National Institute of Standards and Technology (NIST)<\/strong> just published SP 1800-35, a practical guide with 19 real-world examples of Zero Trust in action.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">This isn\u2019t just theory.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">NIST worked with 24 industry partners for 4 years to build and test actual implementations using <strong>commercially available tools.<\/strong><\/p>\n\n\n\n<p class=\"wp-block-paragraph\">If you\u2019ve been stuck trying to figure out how to start Zero Trust in your organisation, this is your roadmap.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"h-from-theory-to-practice-the-big-shift\">From Theory to Practice: The Big Shift<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">Back in the past, NIST released <strong><a href=\"https:\/\/nvlpubs.nist.gov\/nistpubs\/specialpublications\/NIST.SP.800-207.pdf\">SP 800-207<\/a>,<\/strong> which explained Zero Trust at a conceptual level.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">But SP 1800-35 is different. This guide <strong>shows you how to build it<\/strong>, not just talk about it.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>It includes:<\/strong><\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>19 practical deployment models<\/li>\n\n\n\n<li>Network diagrams, YAML templates, and JSON logic<\/li>\n\n\n\n<li>Best practices for integrating with legacy systems<\/li>\n\n\n\n<li>Troubleshooting tips from real-world tests<\/li>\n\n\n\n<li>Tools, technologies, and policy frameworks that work<\/li>\n<\/ul>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"h-why-traditional-security-models-are-failing\">Why Traditional Security Models Are Failing?<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">Old-school network security is built on the idea of a perimeter, like a moat around a castle.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">If you&#8217;re inside the network, you&#8217;re trusted. If you&#8217;re outside, you&#8217;re blocked.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>Sounds simple. But today\u2019s enterprise looks nothing like a medieval castle.<\/strong><\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Your employees work from home<\/li>\n\n\n\n<li>Your applications run in the cloud<\/li>\n\n\n\n<li>Your data lives across hybrid and multi-cloud environments<\/li>\n\n\n\n<li>Your users log in from coffee shops and airports<\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\">There\u2019s no longer a \u201csafe inside.\u201d The perimeter is gone. And attackers know this. That\u2019s why Zero Trust is non-negotiable in modern cybersecurity.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"h-the-5-real-world-zta-models-nist-highlights\">The 5 Real-World ZTA Models NIST Highlights<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">NIST didn\u2019t just offer theory; it grouped the 19 examples into five common ZTA models to help you choose the one that fits your needs. <strong>Let\u2019s take a quick look at each:<\/strong><\/p>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"h-1-enhanced-identity-governance-eig\">1. Enhanced Identity Governance (EIG)<\/h3>\n\n\n\n<ul class=\"wp-block-list\">\n<li><strong>Tools:<\/strong> Identity and Access Management (IAM), Endpoint Protection<\/li>\n\n\n\n<li><strong>Use Case:<\/strong> Protecting internal, on-prem resources<\/li>\n\n\n\n<li><strong>Ideal for:<\/strong> Organisations just starting their Zero Trust journey<\/li>\n<\/ul>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"h-2-software-defined-perimeter-sdp\">2. Software-Defined Perimeter (SDP)<\/h3>\n\n\n\n<ul class=\"wp-block-list\">\n<li><strong>Tools:<\/strong> Cloudflare Access, Zscaler<\/li>\n\n\n\n<li><strong>Use Case: <\/strong>Remote access security<\/li>\n\n\n\n<li><strong>Ideal for:<\/strong> Companies with remote or hybrid workforces<\/li>\n<\/ul>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"h-3-microsegmentation\">3. Microsegmentation<\/h3>\n\n\n\n<ul class=\"wp-block-list\">\n<li><strong>Tools: <\/strong>VMware NSX, Cisco ACI<\/li>\n\n\n\n<li><strong>Use Case:<\/strong> Isolating workloads inside the data centre<\/li>\n\n\n\n<li><strong>Ideal for:<\/strong> Enterprises needing granular control inside their networks<\/li>\n<\/ul>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"h-4-secure-access-service-edge-sase\">4. Secure Access Service Edge (SASE)<\/h3>\n\n\n\n<ul class=\"wp-block-list\">\n<li><strong>Tools:<\/strong> Palo Alto Prisma, Netskope<\/li>\n\n\n\n<li><strong>Use Case:<\/strong> Securing branch offices and distributed networks<\/li>\n\n\n\n<li><strong>Ideal for:<\/strong> Large, decentralised organisations<\/li>\n<\/ul>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"h-5-hybrid-cloud-zta\">5. Hybrid Cloud ZTA<\/h3>\n\n\n\n<ul class=\"wp-block-list\">\n<li><strong>Tools:<\/strong> AWS IAM, Azure Policy, Google BeyondCorp<\/li>\n\n\n\n<li><strong>Use Case:<\/strong> Managing access across multi-cloud setups<\/li>\n\n\n\n<li><strong>Ideal for: <\/strong>Cloud-first or cloud-native companies<\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\">These examples show that Zero Trust isn\u2019t a one-size-fits-all model. <strong>You have options.<\/strong><\/p>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"h-what-s-inside-the-guide-and-how-you-can-use-it\">What\u2019s Inside the Guide (And How You Can Use It)<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">Each of the 19 implementation examples includes:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li><strong>Sample configurations<\/strong><\/li>\n\n\n\n<li><strong>Policy logic<\/strong> (in JSON and YAML)<\/li>\n\n\n\n<li><strong>Integration paths<\/strong> with common legacy systems<\/li>\n\n\n\n<li><strong>Security tools<\/strong> (SIEM, EDR, IAM)<\/li>\n\n\n\n<li><strong>Mapping to standards<\/strong> like NIST SP 800-53 and ISO 27001<\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\">For example, in a scenario where an admin tries to access a sensitive database from a coffee shop WiFi, the policy engine can <strong>automatically deny <\/strong>access based on risk signals like location, device posture, or behaviour anomalies.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">And yes, the guide <strong>shows you how to set that up.<\/strong><\/p>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"h-key-technologies-you-ll-see-in-action\">Key Technologies You\u2019ll See in Action<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">NIST doesn\u2019t endorse vendors, but it shows how these tools can work together through APIs and automation. <strong>Here\u2019s a quick list of the types of tools used in the guide:<\/strong><\/p>\n\n\n\n<figure class=\"wp-block-table\"><table class=\"has-fixed-layout\"><tbody><tr><td><strong>Category<\/strong><strong><\/strong><\/td><td><strong>Example Tools<\/strong><strong><\/strong><\/td><\/tr><tr><td>Identity<\/td><td>Okta, Microsoft Entra ID<\/td><\/tr><tr><td>Network<\/td><td>Cisco SecureX, Cloudflare Zero Trust<\/td><\/tr><tr><td>Endpoint<\/td><td>CrowdStrike, Tanium<\/td><\/tr><tr><td>Access Control<\/td><td>ABAC, MFA, SCIM provisioning<\/td><\/tr><tr><td>Monitoring<\/td><td>SIEMs, UEBA, continuous audit tools<\/td><\/tr><\/tbody><\/table><\/figure>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"h-common-challenges-and-how-to-beat-them\">Common Challenges and How to Beat Them?<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">Let\u2019s be honest: Zero Trust isn\u2019t plug-and-play. <strong>Here are the top 3 hurdles you\u2019ll face and how the guide helps you solve them:<\/strong><\/p>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"h-1-legacy-system-integration\">1. Legacy System Integration<\/h3>\n\n\n\n<ul class=\"wp-block-list\">\n<li><strong>Problem:<\/strong> Older apps can\u2019t support modern access control<\/li>\n\n\n\n<li><strong>Fix:<\/strong> Use API gateways and enforce <a href=\"https:\/\/certera.com\/blog\/what-is-mtls-authentication-mutual-tls\/\">mutual TLS<\/a> on traffic<\/li>\n<\/ul>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"h-2-policy-granularity\">2. Policy Granularity<\/h3>\n\n\n\n<ul class=\"wp-block-list\">\n<li><strong>Problem:<\/strong> Too many access rules = confusion<\/li>\n\n\n\n<li><strong>Fix:<\/strong> Use attribute-based access control (ABAC) with clear labels (e.g., data_classification = PCI)<\/li>\n<\/ul>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"h-3-performance-overhead\">3. Performance Overhead<\/h3>\n\n\n\n<ul class=\"wp-block-list\">\n<li><strong>Problem:<\/strong> Constant auth checks can slow things down<\/li>\n\n\n\n<li><strong>Fix:<\/strong> Implement smart caching for high-frequency requests using tools like Redis<\/li>\n<\/ul>\n\n\n\n<p class=\"quote-section wp-block-paragraph\">By addressing these issues up front, you can cut Zero Trust implementation time from 18 months to under 6 months, <strong><em>as noted by NIST co-author Alper Kerman<\/em><\/strong>.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"h-so-where-should-you-start\">So, Where Should You Start?<\/h2>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"h-step-1-take-inventory\">Step 1: Take Inventory<\/h3>\n\n\n\n<p class=\"wp-block-paragraph\">Map out all users, devices, apps, and data. You can\u2019t protect what you can\u2019t see.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"h-step-2-define-your-policies\">Step 2: Define Your Policies<\/h3>\n\n\n\n<p class=\"wp-block-paragraph\">Use the principle of least privilege. Give users the minimum access they need and nothing more.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"h-step-3-start-small\">Step 3: Start Small<\/h3>\n\n\n\n<p class=\"wp-block-paragraph\">Pick one area (like remote access or identity governance) and implement your first ZTA component.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"h-step-4-measure-and-adjust\">Step 4: Measure and Adjust<\/h3>\n\n\n\n<p class=\"wp-block-paragraph\">Use monitoring tools to track behaviour and tweak your policies accordingly.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"h-step-5-scale-gradually\">Step 5: Scale Gradually<\/h3>\n\n\n\n<p class=\"wp-block-paragraph\">As you gain confidence, roll out more components like microsegmentation, SASE, and continuous authentication.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"h-zero-trust-is-a-journey-not-a-one-time-project\">Zero Trust Is a Journey, Not a One-Time Project<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">Cyber threats aren\u2019t static. Your architecture shouldn\u2019t be either. Zero Trust requires ongoing effort. You\u2019ll need to:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Continuously validate users and devices<\/li>\n\n\n\n<li>Stay up-to-date with new threats<\/li>\n\n\n\n<li>Revisit policies and access decisions regularly<\/li>\n\n\n\n<li>Evolve your architecture as your tech stack changes<\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\">But here\u2019s the good news: NIST\u2019s guide gives you the blueprint to <strong>start smart, scale fast, and stay secure.<\/strong><\/p>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"h-conclusion\">Conclusion<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\"><a href=\"https:\/\/www.nccoe.nist.gov\/projects\/implementing-zero-trust-architecture\">NIST\u2019s SP 1800-35<\/a> is more than just a document. It\u2019s a <strong>real-world guide to building a modern security posture.<\/strong> Whether you&#8217;re a startup with remote teams or an enterprise juggling multiple clouds, you now have a playbook for implementing Zero Trust \u2014 step by step, example by example.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">So don\u2019t wait for the next breach to force you into action. <strong>Start now<\/strong>, audit your systems, define your policies, and use the 19 examples to build the architecture your future depends on.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>If you\u2019re still relying on a perimeter firewall to protect your network\u2026 you\u2019re already behind. The way we work has changed. Remote teams, cloud apps, and mobile devices they\u2019ve all shattered the traditional idea of a secure network boundary. That\u2019s where Zero Trust Architecture (ZTA) comes in. And NIST just released a powerful new guide<span class=\"morelink d-block mt-3\"><a href=\"https:\/\/certera.com\/blog\/nist-publishes-new-zero-trust-implementation-guidance-to-build-zta-sp-1800-35\/\">Read More<\/a><\/span><\/p>\n","protected":false},"author":1,"featured_media":3685,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[18,6],"tags":[702,701],"class_list":["post-3677","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-encryption","category-https-encryption","tag-nist-special-publication-1800-35","tag-nist-zero-trust-architecture","entry"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.8 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>NIST Publishes 19 Key Techniques to Build Zero Trust (SP 1800-35)<\/title>\n<meta name=\"description\" content=\"The NIST has released the final guide, Implementing a Zero Trust Architecture (NIST SP 1800-35). Learn to implement Zero Trust Architecture!\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/certera.com\/blog\/nist-publishes-new-zero-trust-implementation-guidance-to-build-zta-sp-1800-35\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"NIST Publishes 19 Key Techniques to Build Zero Trust (SP 1800-35)\" \/>\n<meta property=\"og:description\" content=\"The NIST has released the final guide, Implementing a Zero Trust Architecture (NIST SP 1800-35). Learn to implement Zero Trust Architecture!\" \/>\n<meta property=\"og:url\" content=\"https:\/\/certera.com\/blog\/nist-publishes-new-zero-trust-implementation-guidance-to-build-zta-sp-1800-35\/\" \/>\n<meta property=\"og:site_name\" content=\"EncryptedFence by Certera - Web &amp; Cyber Security Blog\" \/>\n<meta property=\"article:publisher\" content=\"https:\/\/www.facebook.com\/certeraLLC\/\" \/>\n<meta property=\"article:published_time\" content=\"2025-06-19T05:01:57+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2025-06-19T05:01:58+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/certera.com\/blog\/wp-content\/uploads\/2025\/06\/nist-zero-trust-architectures.webp\" \/>\n\t<meta property=\"og:image:width\" content=\"960\" \/>\n\t<meta property=\"og:image:height\" content=\"620\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"Janki Mehta\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@certera_llc\" \/>\n<meta name=\"twitter:site\" content=\"@certera_llc\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Janki Mehta\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"7 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/certera.com\\\/blog\\\/nist-publishes-new-zero-trust-implementation-guidance-to-build-zta-sp-1800-35\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/certera.com\\\/blog\\\/nist-publishes-new-zero-trust-implementation-guidance-to-build-zta-sp-1800-35\\\/\"},\"author\":{\"name\":\"Janki Mehta\",\"@id\":\"https:\\\/\\\/certera.com\\\/blog\\\/#\\\/schema\\\/person\\\/e5a476aa90d9e02260ebfe4b0bf046b7\"},\"headline\":\"NIST Publishes New Zero Trust Implementation Guidance: 19 Ways to Build ZTA (SP 1800-35)\",\"datePublished\":\"2025-06-19T05:01:57+00:00\",\"dateModified\":\"2025-06-19T05:01:58+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/certera.com\\\/blog\\\/nist-publishes-new-zero-trust-implementation-guidance-to-build-zta-sp-1800-35\\\/\"},\"wordCount\":1360,\"commentCount\":0,\"publisher\":{\"@id\":\"https:\\\/\\\/certera.com\\\/blog\\\/#organization\"},\"image\":{\"@id\":\"https:\\\/\\\/certera.com\\\/blog\\\/nist-publishes-new-zero-trust-implementation-guidance-to-build-zta-sp-1800-35\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/certera.com\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/06\\\/nist-zero-trust-architectures.webp\",\"keywords\":[\"NIST Special Publication 1800-35\",\"NIST Zero Trust Architecture\"],\"articleSection\":[\"Encryption\",\"HTTPS Encryption\"],\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\\\/\\\/certera.com\\\/blog\\\/nist-publishes-new-zero-trust-implementation-guidance-to-build-zta-sp-1800-35\\\/#respond\"]}],\"copyrightYear\":\"2025\",\"copyrightHolder\":{\"@id\":\"https:\\\/\\\/certera.com\\\/blog\\\/#organization\"}},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/certera.com\\\/blog\\\/nist-publishes-new-zero-trust-implementation-guidance-to-build-zta-sp-1800-35\\\/\",\"url\":\"https:\\\/\\\/certera.com\\\/blog\\\/nist-publishes-new-zero-trust-implementation-guidance-to-build-zta-sp-1800-35\\\/\",\"name\":\"NIST Publishes 19 Key Techniques to Build Zero Trust (SP 1800-35)\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/certera.com\\\/blog\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/certera.com\\\/blog\\\/nist-publishes-new-zero-trust-implementation-guidance-to-build-zta-sp-1800-35\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/certera.com\\\/blog\\\/nist-publishes-new-zero-trust-implementation-guidance-to-build-zta-sp-1800-35\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/certera.com\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/06\\\/nist-zero-trust-architectures.webp\",\"datePublished\":\"2025-06-19T05:01:57+00:00\",\"dateModified\":\"2025-06-19T05:01:58+00:00\",\"description\":\"The NIST has released the final guide, Implementing a Zero Trust Architecture (NIST SP 1800-35). Learn to implement Zero Trust Architecture!\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/certera.com\\\/blog\\\/nist-publishes-new-zero-trust-implementation-guidance-to-build-zta-sp-1800-35\\\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/certera.com\\\/blog\\\/nist-publishes-new-zero-trust-implementation-guidance-to-build-zta-sp-1800-35\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/certera.com\\\/blog\\\/nist-publishes-new-zero-trust-implementation-guidance-to-build-zta-sp-1800-35\\\/#primaryimage\",\"url\":\"https:\\\/\\\/certera.com\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/06\\\/nist-zero-trust-architectures.webp\",\"contentUrl\":\"https:\\\/\\\/certera.com\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/06\\\/nist-zero-trust-architectures.webp\",\"width\":960,\"height\":620,\"caption\":\"Implementing Zero Trust Architecture NIST\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/certera.com\\\/blog\\\/nist-publishes-new-zero-trust-implementation-guidance-to-build-zta-sp-1800-35\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/certera.com\\\/blog\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"NIST Publishes New Zero Trust Implementation Guidance: 19 Ways to Build ZTA (SP 1800-35)\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/certera.com\\\/blog\\\/#website\",\"url\":\"https:\\\/\\\/certera.com\\\/blog\\\/\",\"name\":\"EncryptedFence by Certera - Web & Cyber Security Blog\",\"description\":\"\",\"publisher\":{\"@id\":\"https:\\\/\\\/certera.com\\\/blog\\\/#organization\"},\"alternateName\":\"Certera's EncryptedFence Blog\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/certera.com\\\/blog\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/certera.com\\\/blog\\\/#organization\",\"name\":\"Certera\",\"url\":\"https:\\\/\\\/certera.com\\\/blog\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/certera.com\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/certera.com\\\/blog\\\/wp-content\\\/uploads\\\/2023\\\/08\\\/logo-encryptedfence.svg\",\"contentUrl\":\"https:\\\/\\\/certera.com\\\/blog\\\/wp-content\\\/uploads\\\/2023\\\/08\\\/logo-encryptedfence.svg\",\"caption\":\"Certera\"},\"image\":{\"@id\":\"https:\\\/\\\/certera.com\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\"},\"sameAs\":[\"https:\\\/\\\/www.facebook.com\\\/certeraLLC\\\/\",\"https:\\\/\\\/x.com\\\/certera_llc\",\"https:\\\/\\\/www.linkedin.com\\\/company\\\/certera-llc\\\/\"]},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/certera.com\\\/blog\\\/#\\\/schema\\\/person\\\/e5a476aa90d9e02260ebfe4b0bf046b7\",\"name\":\"Janki Mehta\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/1fba817ef81065f1393461fc3a0d85c40f2cc826919819ea4df4b12d76566e62?s=96&d=https%3A%2F%2Fcertera.com%2Fblog%2Fwp-content%2Fuploads%2F2023%2F02%2Fhttps-vs-sftp-jpg.webp&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/1fba817ef81065f1393461fc3a0d85c40f2cc826919819ea4df4b12d76566e62?s=96&d=https%3A%2F%2Fcertera.com%2Fblog%2Fwp-content%2Fuploads%2F2023%2F02%2Fhttps-vs-sftp-jpg.webp&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/1fba817ef81065f1393461fc3a0d85c40f2cc826919819ea4df4b12d76566e62?s=96&d=https%3A%2F%2Fcertera.com%2Fblog%2Fwp-content%2Fuploads%2F2023%2F02%2Fhttps-vs-sftp-jpg.webp&r=g\",\"caption\":\"Janki Mehta\"},\"description\":\"Janki Mehta is a passionate Cyber-Security Enthusiast who keenly monitors the latest developments in the Web\\\/Cyber Security industry. She puts her knowledge into practice and helps web users by arming them with the necessary security measures to stay safe in the digital world.\",\"sameAs\":[\"https:\\\/\\\/certerassl.com\\\/\"],\"url\":\"https:\\\/\\\/certera.com\\\/blog\\\/author\\\/certerabguser\\\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"NIST Publishes 19 Key Techniques to Build Zero Trust (SP 1800-35)","description":"The NIST has released the final guide, Implementing a Zero Trust Architecture (NIST SP 1800-35). Learn to implement Zero Trust Architecture!","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/certera.com\/blog\/nist-publishes-new-zero-trust-implementation-guidance-to-build-zta-sp-1800-35\/","og_locale":"en_US","og_type":"article","og_title":"NIST Publishes 19 Key Techniques to Build Zero Trust (SP 1800-35)","og_description":"The NIST has released the final guide, Implementing a Zero Trust Architecture (NIST SP 1800-35). Learn to implement Zero Trust Architecture!","og_url":"https:\/\/certera.com\/blog\/nist-publishes-new-zero-trust-implementation-guidance-to-build-zta-sp-1800-35\/","og_site_name":"EncryptedFence by Certera - Web &amp; Cyber Security Blog","article_publisher":"https:\/\/www.facebook.com\/certeraLLC\/","article_published_time":"2025-06-19T05:01:57+00:00","article_modified_time":"2025-06-19T05:01:58+00:00","og_image":[{"width":960,"height":620,"url":"https:\/\/certera.com\/blog\/wp-content\/uploads\/2025\/06\/nist-zero-trust-architectures.webp","type":"image\/jpeg"}],"author":"Janki Mehta","twitter_card":"summary_large_image","twitter_creator":"@certera_llc","twitter_site":"@certera_llc","twitter_misc":{"Written by":"Janki Mehta","Est. reading time":"7 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/certera.com\/blog\/nist-publishes-new-zero-trust-implementation-guidance-to-build-zta-sp-1800-35\/#article","isPartOf":{"@id":"https:\/\/certera.com\/blog\/nist-publishes-new-zero-trust-implementation-guidance-to-build-zta-sp-1800-35\/"},"author":{"name":"Janki Mehta","@id":"https:\/\/certera.com\/blog\/#\/schema\/person\/e5a476aa90d9e02260ebfe4b0bf046b7"},"headline":"NIST Publishes New Zero Trust Implementation Guidance: 19 Ways to Build ZTA (SP 1800-35)","datePublished":"2025-06-19T05:01:57+00:00","dateModified":"2025-06-19T05:01:58+00:00","mainEntityOfPage":{"@id":"https:\/\/certera.com\/blog\/nist-publishes-new-zero-trust-implementation-guidance-to-build-zta-sp-1800-35\/"},"wordCount":1360,"commentCount":0,"publisher":{"@id":"https:\/\/certera.com\/blog\/#organization"},"image":{"@id":"https:\/\/certera.com\/blog\/nist-publishes-new-zero-trust-implementation-guidance-to-build-zta-sp-1800-35\/#primaryimage"},"thumbnailUrl":"https:\/\/certera.com\/blog\/wp-content\/uploads\/2025\/06\/nist-zero-trust-architectures.webp","keywords":["NIST Special Publication 1800-35","NIST Zero Trust Architecture"],"articleSection":["Encryption","HTTPS Encryption"],"inLanguage":"en-US","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/certera.com\/blog\/nist-publishes-new-zero-trust-implementation-guidance-to-build-zta-sp-1800-35\/#respond"]}],"copyrightYear":"2025","copyrightHolder":{"@id":"https:\/\/certera.com\/blog\/#organization"}},{"@type":"WebPage","@id":"https:\/\/certera.com\/blog\/nist-publishes-new-zero-trust-implementation-guidance-to-build-zta-sp-1800-35\/","url":"https:\/\/certera.com\/blog\/nist-publishes-new-zero-trust-implementation-guidance-to-build-zta-sp-1800-35\/","name":"NIST Publishes 19 Key Techniques to Build Zero Trust (SP 1800-35)","isPartOf":{"@id":"https:\/\/certera.com\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/certera.com\/blog\/nist-publishes-new-zero-trust-implementation-guidance-to-build-zta-sp-1800-35\/#primaryimage"},"image":{"@id":"https:\/\/certera.com\/blog\/nist-publishes-new-zero-trust-implementation-guidance-to-build-zta-sp-1800-35\/#primaryimage"},"thumbnailUrl":"https:\/\/certera.com\/blog\/wp-content\/uploads\/2025\/06\/nist-zero-trust-architectures.webp","datePublished":"2025-06-19T05:01:57+00:00","dateModified":"2025-06-19T05:01:58+00:00","description":"The NIST has released the final guide, Implementing a Zero Trust Architecture (NIST SP 1800-35). Learn to implement Zero Trust Architecture!","breadcrumb":{"@id":"https:\/\/certera.com\/blog\/nist-publishes-new-zero-trust-implementation-guidance-to-build-zta-sp-1800-35\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/certera.com\/blog\/nist-publishes-new-zero-trust-implementation-guidance-to-build-zta-sp-1800-35\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/certera.com\/blog\/nist-publishes-new-zero-trust-implementation-guidance-to-build-zta-sp-1800-35\/#primaryimage","url":"https:\/\/certera.com\/blog\/wp-content\/uploads\/2025\/06\/nist-zero-trust-architectures.webp","contentUrl":"https:\/\/certera.com\/blog\/wp-content\/uploads\/2025\/06\/nist-zero-trust-architectures.webp","width":960,"height":620,"caption":"Implementing Zero Trust Architecture NIST"},{"@type":"BreadcrumbList","@id":"https:\/\/certera.com\/blog\/nist-publishes-new-zero-trust-implementation-guidance-to-build-zta-sp-1800-35\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/certera.com\/blog\/"},{"@type":"ListItem","position":2,"name":"NIST Publishes New Zero Trust Implementation Guidance: 19 Ways to Build ZTA (SP 1800-35)"}]},{"@type":"WebSite","@id":"https:\/\/certera.com\/blog\/#website","url":"https:\/\/certera.com\/blog\/","name":"EncryptedFence by Certera - Web & Cyber Security Blog","description":"","publisher":{"@id":"https:\/\/certera.com\/blog\/#organization"},"alternateName":"Certera's EncryptedFence Blog","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/certera.com\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/certera.com\/blog\/#organization","name":"Certera","url":"https:\/\/certera.com\/blog\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/certera.com\/blog\/#\/schema\/logo\/image\/","url":"https:\/\/certera.com\/blog\/wp-content\/uploads\/2023\/08\/logo-encryptedfence.svg","contentUrl":"https:\/\/certera.com\/blog\/wp-content\/uploads\/2023\/08\/logo-encryptedfence.svg","caption":"Certera"},"image":{"@id":"https:\/\/certera.com\/blog\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/www.facebook.com\/certeraLLC\/","https:\/\/x.com\/certera_llc","https:\/\/www.linkedin.com\/company\/certera-llc\/"]},{"@type":"Person","@id":"https:\/\/certera.com\/blog\/#\/schema\/person\/e5a476aa90d9e02260ebfe4b0bf046b7","name":"Janki Mehta","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/1fba817ef81065f1393461fc3a0d85c40f2cc826919819ea4df4b12d76566e62?s=96&d=https%3A%2F%2Fcertera.com%2Fblog%2Fwp-content%2Fuploads%2F2023%2F02%2Fhttps-vs-sftp-jpg.webp&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/1fba817ef81065f1393461fc3a0d85c40f2cc826919819ea4df4b12d76566e62?s=96&d=https%3A%2F%2Fcertera.com%2Fblog%2Fwp-content%2Fuploads%2F2023%2F02%2Fhttps-vs-sftp-jpg.webp&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/1fba817ef81065f1393461fc3a0d85c40f2cc826919819ea4df4b12d76566e62?s=96&d=https%3A%2F%2Fcertera.com%2Fblog%2Fwp-content%2Fuploads%2F2023%2F02%2Fhttps-vs-sftp-jpg.webp&r=g","caption":"Janki Mehta"},"description":"Janki Mehta is a passionate Cyber-Security Enthusiast who keenly monitors the latest developments in the Web\/Cyber Security industry. She puts her knowledge into practice and helps web users by arming them with the necessary security measures to stay safe in the digital world.","sameAs":["https:\/\/certerassl.com\/"],"url":"https:\/\/certera.com\/blog\/author\/certerabguser\/"}]}},"_links":{"self":[{"href":"https:\/\/certera.com\/blog\/wp-json\/wp\/v2\/posts\/3677","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/certera.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/certera.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/certera.com\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/certera.com\/blog\/wp-json\/wp\/v2\/comments?post=3677"}],"version-history":[{"count":4,"href":"https:\/\/certera.com\/blog\/wp-json\/wp\/v2\/posts\/3677\/revisions"}],"predecessor-version":[{"id":3684,"href":"https:\/\/certera.com\/blog\/wp-json\/wp\/v2\/posts\/3677\/revisions\/3684"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/certera.com\/blog\/wp-json\/wp\/v2\/media\/3685"}],"wp:attachment":[{"href":"https:\/\/certera.com\/blog\/wp-json\/wp\/v2\/media?parent=3677"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/certera.com\/blog\/wp-json\/wp\/v2\/categories?post=3677"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/certera.com\/blog\/wp-json\/wp\/v2\/tags?post=3677"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}