Most security models still assume the network is visible and then try to control access on top of it.
This CSA paper argues for the opposite: hiding network infrastructure entirely — no routable IPs, no exposed ports, no DNS answers — until identity is verified at the session layer.
The idea builds on SDP and SPA, but reframes zero trust around invisibility first, especially against automated and AI-driven reconnaissance.
1 comment
[ 1.6 ms ] story [ 9.9 ms ] thread