Summary: Federal agencies can’t just connect their systems to the internet; they must follow a policy called Trusted Internet Connection to ensure a certain level of security. The policy was recently updated and CISA provided use cases and a reference architecture explaining key concepts. The draft for the latter includes a concept called “trust zones,” which caused confusion related to the cybersecurity concept of “zero trust.” Nextgov spoke with people shaping the program and a critic to set the record s
