Google Reveals Own Security Regime Policy Trusts No Network, Ever

Darren Pauli, reporting for The Register: Google sees little distinction between boardrooms and bars, cubicles and coffee shops; all are untrusted under its perimeter-less security model detailed in a paper published this week. The "BeyondCorp model" under development for more than five years is a zero-trust network model where the user is king and log in location means little. Staff devices including laptops and phones are logged into a device inventory service which contains trust information and snapshots of the devices at a given time. Employees are awarded varying levels of trust provided they meet minimum criteria which authors Barclay Osborn, Justin McWilliams, Betsy Beyer, and Max Saltonst all say reduces maintenance cost and improves device usability (PDF).

Good idea.

[LWATCDR]

Way back in the day a company I worked for had done a good job securing our network...
Until a developer went to a conference and plugged his network in the hotel network then brought it back inside our firewall.
We did catch the problem very quickly and only a few machines where infected but we locked things down even more after that.