This SANS whitepaper addresses a few key changes we need to address:
• Looking at our entire environment as potentially untrusted or compromised, versus thinking in terms of “outside-in” attack vectors
• Better understanding intended application behavior and doing our best to enforce these approved application behaviors
• Focusing on trust relationships and system-to-system relationships in general within all parts of our environment