Securing Sensitive Data in the Cloud: A New Era of Security Through Zero Trust Principles

Abstract: The goal of this report is to examine how traditional security systems are structured and see their shortcomings, and from there propose how a new system can be built to secure sensitive data. The proposed approach is a new architecture called Zero Trust, which means implementing security at the design of the system and providing minimal access to users to perform their tasks. The system must be applicable to the already existing cloud-based system. The result is a system initiated by a GitLab instance hosted by a Docker container and has two different processes for identifying users. One of the processes is used to initially log into GitLab through a separate identity provider that uses Keycloak, and the second instance to sign a commit. The report will also explain improvements for the future to make it more secure.