A Comprehensive Survey on Zero Trust Architecture for Securing Modern Enterprise Networks

The increasing sophistication of cyber threats and the widespread adoption of cloud-based and distributed enterprise networks have rendered traditional perimeter-based security models ineffective. These legacy approaches rely on implicit trust within internal networks, making them vulnerable to insider threats and lateral movement attacks. Zero Trust Architecture (ZTA) has been introduced as a modern security paradigm that eliminates implicit trust by enforcing continuous verification and strict access control across network resources. This paper presents a comprehensive survey of Zero Trust Architecture with a particular emphasis on its application to enterprise network security. Existing Zero Trust reference models, including standard and industry-driven architectures, are systematically reviewed and analyzed. The survey further examines key enabling technologies such as identity and access management, micro-segmentation, and continuous network monitoring, highlighting their roles in implementing Zero Trust principles at the network level. In addition, this study discusses the effectiveness of Zero Trust in mitigating major network-based threats and outlines open challenges and future research directions to support its practical deployment in real-world enterprise environments.