Zero Trust Architecture and Identity Threat Detection for Securing Cloud, IoT, and Hybrid Enterprise Systems
Main Article Content
Abstract
Modern enterprise security has become more complex as organizations increasingly depend on cloud platforms, Internet of Things devices, hybrid networks, remote users, application programming interfaces, and third-party digital services. These developments have made traditional perimeter-based security less effective, since users, devices, applications, and workloads now operate across distributed environments that cannot be protected by a fixed network boundary alone. Zero Trust Architecture provides a more suitable security approach by removing implicit trust and requiring every access request to be continuously verified based on identity, device status, access context, and risk level. Within this model, identity threat detection plays a central role because many cyberattacks now exploit valid credentials, excessive privileges, compromised accounts, insider access, and abnormal user behavior. By combining identity governance, risk-based authentication, least privilege access, anomaly detection, and continuous monitoring, organizations can improve their ability to detect unauthorized access, reduce lateral movement, and respond more effectively to emerging threats. This article examines the relationship between Zero Trust Architecture and identity threat detection in cloud, IoT, and hybrid enterprise systems. It also develops a conceptual framework for integrating Zero Trust principles with identity-centered security controls to strengthen enterprise cyber resilience.
Article Details
Section
How to Cite
References
1. Buck, C., Olenberger, C., Schweizer, A., Völter, F., & Eymann, T. (2021). Never trust, always verify: A multivocal literature review on current knowledge and research gaps of zero-trust. Computers & Security, 110, 102436. 2. Syed, N. F., Shah, S. W., Shaghaghi, A., Anwar, A., Baig, Z., & Doss, R. (2022). Zero trust architecture (zta): A comprehensive survey. IEEE access, 10, 57143-57179. 3. Adahman, Z., Malik, A. W., & Anwar, Z. (2022). An analysis of zero-trust architecture and its cost-effectiveness for organizational security. Computers & Security, 122, 102911. 4. Phiayura, P., & Teerakanok, S. (2023). A comprehensive framework for migrating to zero trust architecture. Ieee Access, 11, 19487-19511. 5. Yeoh, W., Liu, M., Shore, M., & Jiang, F. (2023). Zero trust cybersecurity: Critical success factors and A maturity assessment framework. Computers & Security, 133, 103412. 6. Wylde, A. (2021, June). Zero trust: Never trust, always verify. In 2021 international conference on cyber situational awareness, data analytics and assessment (cybersa) (pp. 1-4). IEEE. 7. Dhiman, P., Saini, N., Gulzar, Y., Turaev, S., Kaur, A., Nisa, K. U., & Hamid, Y. (2024). A review and comparative analysis of relevant approaches of zero trust network model. Sensors, 24(4), 1328. 8. KOTA, S. K. (2022). A Real-World Deployment of an Enterprise Conversational AI Platform for Demand Generation and Lead Generation Using Guided Workflows with a Rasa-Based Chatbot. Frontiers in Computer Science and Artificial Intelligence, 1(1), 2430. 9. Zanasi, C., Russo, S., & Colajanni, M. (2024). Flexible zero trust architecture for the cybersecurity of industrial IoT infrastructures. Ad Hoc Networks, 156, 103414. 10. Dasu, L. S., Dhamija, M., Dishitha, G., Vivekanandan, A., & Sarasvathi, V. (2023). Defending against identity threats using risk-based authentication. Cybernetics and Information Technologies, 23(2), 105-123. 11. Vallemoni, R. K. (2022). Authorization-to-settlement at scale: A reference data architecture for ISO 8583/ISO 20022 coexistence. Journal of Computer Science and Technology Studies, 4(1), 88-98. 12. Sandhu, R. S., Coyne, E. J., Feinstein, H. L., & Youman, C. E. (1996). Role-based access control models. Computer, 29(2), 38-47. December 2024 www.ijhit.inf o 181 | Page International Journal of Humanities and Information Technology (IJHIT) e-ISSN: 2456 –1142, Volume 6, Issue 4, (December 2024), www.ijhit.info 13. Jin, X., Krishnan, R., & Sandhu, R. (2012, July). A unified attribute-based access control model covering DAC, MAC and RBAC. In IFIP Annual Conference on Data and Applications Security and Privacy (pp. 41-55). Berlin, Heidelberg: Springer Berlin Heidelberg. 14. Bertino, E., & Takahashi, K. (2010). Identity management: Concepts, technologies, and systems. Artech House. 15. Gheyas, I. A., & Abdallah, A. E. (2016). Detection and prediction of insider threats to cyber security: a systematic literature review and meta-analysis. Big data analytics, 1(1), 6. 16. Ibimilua, A. F. (2008). The ideal design of a potentially safe community. Journal of Applied Security Research, 4(1-2), 129-140. 17. Salem, M. B., Hershkop, S., & Stolfo, S. J. (2008). A survey of insider attack detection research. Insider Attack and Cyber Security: Beyond the Hacker, 69-90. 18. Bhatt, S., Manadhata, P. K., & Zomlot, L. (2014). The operational role of security information and event management systems. IEEE security & Privacy, 12(5), 35-41. 19. Ahmed, M., Mahmood, A. N., & Hu, J. (2016). A survey of network anomaly detection techniques. Journal of network and computer applications, 60, 19-31. 20. Veershetty, G. (2026). Automated Root Cause Analysis in SAP Landscapes Using Large Language Models and Operational Telemetry. International Journal of Emerging Trends in Computer Science and Information Technology, 7(1), 186-191. 21. ALAMPALLY, J. (2024). Real-Time and Near-Real-Time Analytics in Healthcare Data Ecosystems. Journal of Computer Science and Technology Studies, 6(1), 314-324. 22. Nagraj, A. (2024). GraphQL in Wealth Management Platforms: Optimizing Data Access and Performance. British Journal of Multidisciplinary Studies, 2(1), 16-24. 23. Malone, K., Saveen, S., Stevens, C. M., McNeil, S., Malone, K. T., Sall, S., & McNeil, S. E. (2022). Successful treatment of catatonia: a case report and review of treatment. Cureus, 14(6). 24. Buczak, A. L., & Guven, E. (2015). A survey of data mining and machine learning methods for cyber security intrusion detection. IEEE Communications surveys & tutorials, 18(2), 1153-1176. 25. Hashizume, K., Rosado, D. G., Fernández-Medina, E., & Fernandez, E. B. (2013). An analysis of security issues for cloud computing. Journal of internet services and applications, 4(1), 5. 26. Subashini, S., & Kavitha, V. (2011). A survey on security issues in service delivery models of cloud computing. Journal of network and computer applications, 34(1), 1-11. 27. Vallemoni, R. K. (2023). Merchant Onboarding and Risk Scoring: Data Governance, Master Data, and Golden-Record Strategies. Below the Content is Description. 28. Almorsy, M., Grundy, J., & Müller, I. (2016). An analysis of the cloud computing security problem. arXiv preprint arXiv:1609.01107. December 2024 www.ijhit.inf o 182 | Page International Journal of Humanities and Information Technology (IJHIT) e-ISSN: 2456 –1142, Volume 6, Issue 4, (December 2024), www.ijhit.info 29. Tabrizchi, H., & Kuchaki Rafsanjani, M. (2020). A survey on security challenges in cloud computing: issues, threats, and solutions. The journal of supercomputing, 76(12), 94939532. 30. Stergiou, C., Psannis, K. E., Kim, B. G., & Gupta, B. (2018). Secure integration of IoT and cloud computing. Future generation computer systems, 78, 964-975. 31. Ristenpart, T., Tromer, E., Shacham, H., & Savage, S. (2009, November). Hey, you, get off of my cloud: exploring information leakage in third-party compute clouds. In Proceedings of the 16th ACM conference on Computer and communications security (pp. 199-212). 32. Nagraj, A. (2022). Modernizing Legacy Banking Systems: Migration Strategies and Cost Optimization in Financial Enterprises. Frontiers in Computer Science and Artificial Intelligence, 1(1), 43-52. 33. MARASANI, Y. (2023). Machine Learning Models for Predicting Patient Treatment Switching Using Claims Data. Frontiers in Computer Science and Artificial Intelligence, 2(1), 59-66. 34. Zhang, Q., Cheng, L., & Boutaba, R. (2010). Cloud computing: state-of-the-art and research challenges. Journal of internet services and applications, 1(1), 7-18. 35. Fernandes, D. A. B., Soares, L. F. B., Gomes, J. V., Freire, M. M., & Inácio, P. R. M. (2014). Security issues in cloud environments: A survey. International Journal of Information Security, 13, 113–170. https://doi.org/10.1007/s10207-013-0208-7 36. Roman, R., Zhou, J., & Lopez, J. (2013). On the features and challenges of security and privacy in distributed internet of things. Computer networks, 57(10), 2266-2279. 37. Sicari, S., Rizzardi, A., Grieco, L. A., & Coen-Porisini, A. (2015). Security, privacy and trust in Internet of Things: The road ahead. Computer networks, 76, 146-164. 38. Raza, S., Wallgren, L., & Voigt, T. (2013). SVELTE: Real-time intrusion detection in the Internet of Things. Ad hoc networks, 11(8), 2661-2674. 39. Al-Garadi, M. A., Mohamed, A., Al-Ali, A. K., Du, X., Ali, I., & Guizani, M. (2020). A survey of machine and deep learning methods for internet of things (IoT) security. IEEE communications surveys & tutorials, 22(3), 1646-1685. 40. Mosenia, A., & Jha, N. K. (2016). A comprehensive study of security of internet-ofthings. IEEE Transactions on emerging topics in computing, 5(4), 586-602. 41. Atlam, H. F., Walters, R. J., & Wills, G. B. (2018). Fog computing and the internet of things: A review. big data and cognitive computing, 2(2), 10. 42. Sommer, R., & Paxson, V. (2010, May). Outside the closed world: On using machine learning for network intrusion detection. In 2010 IEEE symposium on security and privacy (pp. 305-316). IEEE. 43. ALAMPALLY, J. (2024). Enhancing data quality and trust in AI systems through robust data engineering. Frontiers in Computer Science and Artificial Intelligence, 3(1), 120130. December 2024 www.ijhit.inf o 183 | Page International Journal of Humanities and Information Technology (IJHIT) e-ISSN: 2456 –1142, Volume 6, Issue 4, (December 2024), www.ijhit.info 44. Vallemoni, R. K. (2022). Canonical payment data models for merchant acquiring: Merchants, terminals, transactions, fees, and chargebacks. International Journal of Computer Science and Engineering (ISCSITR-IJCSE), 3(1), 42-66. 45. Mishra, P., Varadharajan, V., Tupakula, U., & Pilli, E. S. (2018). A detailed investigation and analysis of using machine learning techniques for intrusion detection. IEEE communications surveys & tutorials, 21(1), 686-728. 46. Ferrag, M. A., Maglaras, L., Moschoyiannis, S., & Janicke, H. (2020). Deep learning for cyber security intrusion detection: Approaches, datasets, and comparative study. Journal of Information Security and Applications, 50, 102419.