My first job out of uni was as an Electronic Systems Engineer in the RAAF designing solid state replacements for SURAD, the ATC radar of the day. One of the hardest things to recreate was Identify Friend or Foe (IFF) tags. In a target rich environment, IFF tags help air defence officers filter good aircraft from bad.
In the old days, web filtering was done centrally – usually by a firewall or web filtering proxy. The technology required all corporate traffic at all sites to be funnelled through such a service, and this in-turn drove a rise in MPLS networks – dedicated networks commonly connecting corporate sites to a central data centre. In a zero-trust environment the network gets simpler. MPLS networks and web filter proxies become redundant and web filtering is done at the device – closer to the user is better. This approach is used by Microsoft as part of their Intune and Windows Defender for Endpoint solutions – sophisticated web filtering thatβs difficult to bypass.
If you have Defender for Endpoint licencing, you can enable web filtering by:
1) Logging into the Microsoft 365 Defender portal
2) Scrolling to the bottom of the left blade and select Settings | Endpoints | Web content filtering (under Rules).
3) Adding a policy that includes the categories you want to block, specify the scope, and click Save.
And you are done!
You can also block specific IPs, URLs, or types of traffic (like peer-to-peer) and monitor if someone is attempting access through Reports | Web protection.
Zero trust is not a new term. The concept is based on three pillars – verify explicitly, use least accessed privileges, and assume breach. For example, the corporate network only provides access to applications that contain data you have authority to use. Good security dictates zero trust, in that access to corporate data should not be assumed. And I predict your IT infrastructure will get simpler as a result.
Across the Industry
Submissions open to the Federal Government for the responsible use of AI
Apple Vision Pro headset is demoed at Appleβs WWDC conference
Digitising wastewater systems with Alexandrina Council in South Australia
Listen to a podcast on best practice cybersecurity in higher education
Recent Government Tenders
Department for Education, Children and Young People: Multichannel Messaging Solution (Tasmanian Government Tenders)
South Australia Police: Digital Capability Platform and Support Services (Consolidated Tenders)
Penrith City Council: Core Systems Transformation (VendorPanel)
Narrandera Shire Council: Enterprise Management System (VendorPanel)
The Royal Women’s Hospital: Business Intelligence and Analytics Replacement System (VendorPanel)
City of Monash: Legislative Responsibility Solution (eTenderBox)
Greater Western Water: Information Technology eServices Preferred Suppliers (Consolidated Tenders)
TAS Department for Education, Children and Young People: Multichannel Messaging Solution (DECYP ICT 0023) (Tasmanian Government Tenders)
South Australia Police: Digital Capability Platform and Support Services (Consolidated Tenders)
SA Health: Digital Signage and Wayfinding Solution (Consolidated Tenders)
Mansfield Shire council: Microsoft 365 Alignment & Governance Project (TenderLink)
Alpine Shire Council: DR and Backup Renewal (Tenders.Net)
Northern Health: Active Directory – Professional Services (Consolidated Tenders)
Microsoft News
Improving container recycling in Western Australia with Microsoft
Reduce your carbon footprint with the Greener app
No Comments
Leave a comment Cancel