Policy design in zero-trust distributed networks: challenges and solutions

Fannya Ratana Sandjaja; Ayesha Abdul Majeed; Abdullah Abdullah; Gyan Wickremasinghe; Karen Rafferty; Vishal Sharma

Policy design in zero-trust distributed networks: challenges and solutions

Fannya Ratana Sandjaja
, Ayesha Abdul Majeed
, Abdullah Abdullah
, Gyan Wickremasinghe
, Karen Rafferty
, Vishal Sharma

School of Electronics, Electrical Engineering and Computer Science

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Abstract

Traditional security architectures are becoming more vulnerable to distributed attacks due to significant dependence on trust. This will further escalate when implementing agentic AI within the systems, as more components must be secured over a similar distributed space. These scenarios can be observed in consumer technologies, such as the dense Internet of things (IoT). Here, zero-trust architecture (ZTA) can be seen as a potential solution, which relies on a key principle of not giving users explicit trust, instead always verifying their privileges whenever a request is made. However, the overall security in ZTA is managed through its policies, and unverified policies can lead to unauthorized access. Thus, this paper explores challenges and solutions for ZTA policy design in the context of distributed networks, which is referred to as zero-trust distributed networks(ZTDN). This is followed by a case-study on formal verification of policies using UPPAAL. Subsequently, the importance of accountability and responsibility in the system’s security is discussed

Original language	English
Title of host publication	Industrial Networks and Intelligent Systems: 12th EAI International Conference, INISCOM 2026: Proceedings
Publisher	Springer
Number of pages	21
Publication status	Accepted - 01 Dec 2025
Event	12th EAI International Conference on Industrial Networks and Intelligent Systems: INISCOM 2026 - Da Nang City, Viet Nam Duration: 26 Feb 2026 → 27 Feb 2026 https://iniscom.eai-conferences.org/2026/

Publication series

Name	Lecture Notes of the Institute for Computer Sciences, Social Informatics and Telecommunications Engineering
Publisher	Springer
ISSN (Print)	1867-8211
ISSN (Electronic)	1867-822X

Conference

Conference	12th EAI International Conference on Industrial Networks and Intelligent Systems
Country/Territory	Viet Nam
City	Da Nang City
Period	26/02/2026 → 27/02/2026
Internet address	https://iniscom.eai-conferences.org/2026/

Embargoed Document

Policy design in zero-trust distributed networks: challenges and solutions
Accepted author manuscript, 1.39 MB
Licence: CC BY
Embargo ends: 25/05/2030

Cite this

Sandjaja, F. R., Abdul Majeed, A., Abdullah, A., Wickremasinghe, G., Rafferty, K., & Sharma, V. (Accepted/In press). Policy design in zero-trust distributed networks: challenges and solutions. In Industrial Networks and Intelligent Systems: 12th EAI International Conference, INISCOM 2026: Proceedings (Lecture Notes of the Institute for Computer Sciences, Social Informatics and Telecommunications Engineering ). Springer.

Sandjaja, Fannya Ratana ; Abdul Majeed, Ayesha ; Abdullah, Abdullah et al. / Policy design in zero-trust distributed networks: challenges and solutions. Industrial Networks and Intelligent Systems: 12th EAI International Conference, INISCOM 2026: Proceedings. Springer, 2025. (Lecture Notes of the Institute for Computer Sciences, Social Informatics and Telecommunications Engineering ).

@inproceedings{a6924daaf16944d3aa2c06a88ca477a0,

title = "Policy design in zero-trust distributed networks: challenges and solutions",

abstract = "Traditional security architectures are becoming more vulnerable to distributed attacks due to significant dependence on trust. This will further escalate when implementing agentic AI within the systems, as more components must be secured over a similar distributed space. These scenarios can be observed in consumer technologies, such as the dense Internet of things (IoT). Here, zero-trust architecture (ZTA) can be seen as a potential solution, which relies on a key principle of not giving users explicit trust, instead always verifying their privileges whenever a request is made. However, the overall security in ZTA is managed through its policies, and unverified policies can lead to unauthorized access. Thus, this paper explores challenges and solutions for ZTA policy design in the context of distributed networks, which is referred to as zero-trust distributed networks(ZTDN). This is followed by a case-study on formal verification of policies using UPPAAL. Subsequently, the importance of accountability and responsibility in the system{\textquoteright}s security is discussed",

author = "Sandjaja, \{Fannya Ratana\} and \{Abdul Majeed\}, Ayesha and Abdullah Abdullah and Gyan Wickremasinghe and Karen Rafferty and Vishal Sharma",

year = "2025",

month = dec,

day = "1",

language = "English",

series = "Lecture Notes of the Institute for Computer Sciences, Social Informatics and Telecommunications Engineering ",

publisher = "Springer",

booktitle = "Industrial Networks and Intelligent Systems: 12th EAI International Conference, INISCOM 2026: Proceedings",

note = "12th EAI International Conference on Industrial Networks and Intelligent Systems : INISCOM 2026 ; Conference date: 26-02-2026 Through 27-02-2026",

url = "https://iniscom.eai-conferences.org/2026/",

}

Sandjaja, FR, Abdul Majeed, A, Abdullah, A, Wickremasinghe, G , Rafferty, K & Sharma, V 2025, Policy design in zero-trust distributed networks: challenges and solutions. in Industrial Networks and Intelligent Systems: 12th EAI International Conference, INISCOM 2026: Proceedings. Lecture Notes of the Institute for Computer Sciences, Social Informatics and Telecommunications Engineering , Springer, 12th EAI International Conference on Industrial Networks and Intelligent Systems, Da Nang City, Viet Nam, 26/02/2026.

Policy design in zero-trust distributed networks: challenges and solutions. / Sandjaja, Fannya Ratana; Abdul Majeed, Ayesha; Abdullah, Abdullah et al.
Industrial Networks and Intelligent Systems: 12th EAI International Conference, INISCOM 2026: Proceedings. Springer, 2025. (Lecture Notes of the Institute for Computer Sciences, Social Informatics and Telecommunications Engineering ).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

TY - GEN

T1 - Policy design in zero-trust distributed networks: challenges and solutions

AU - Sandjaja, Fannya Ratana

AU - Abdul Majeed, Ayesha

AU - Abdullah, Abdullah

AU - Wickremasinghe, Gyan

AU - Rafferty, Karen

AU - Sharma, Vishal

PY - 2025/12/1

Y1 - 2025/12/1

N2 - Traditional security architectures are becoming more vulnerable to distributed attacks due to significant dependence on trust. This will further escalate when implementing agentic AI within the systems, as more components must be secured over a similar distributed space. These scenarios can be observed in consumer technologies, such as the dense Internet of things (IoT). Here, zero-trust architecture (ZTA) can be seen as a potential solution, which relies on a key principle of not giving users explicit trust, instead always verifying their privileges whenever a request is made. However, the overall security in ZTA is managed through its policies, and unverified policies can lead to unauthorized access. Thus, this paper explores challenges and solutions for ZTA policy design in the context of distributed networks, which is referred to as zero-trust distributed networks(ZTDN). This is followed by a case-study on formal verification of policies using UPPAAL. Subsequently, the importance of accountability and responsibility in the system’s security is discussed

AB - Traditional security architectures are becoming more vulnerable to distributed attacks due to significant dependence on trust. This will further escalate when implementing agentic AI within the systems, as more components must be secured over a similar distributed space. These scenarios can be observed in consumer technologies, such as the dense Internet of things (IoT). Here, zero-trust architecture (ZTA) can be seen as a potential solution, which relies on a key principle of not giving users explicit trust, instead always verifying their privileges whenever a request is made. However, the overall security in ZTA is managed through its policies, and unverified policies can lead to unauthorized access. Thus, this paper explores challenges and solutions for ZTA policy design in the context of distributed networks, which is referred to as zero-trust distributed networks(ZTDN). This is followed by a case-study on formal verification of policies using UPPAAL. Subsequently, the importance of accountability and responsibility in the system’s security is discussed

M3 - Conference contribution

T3 - Lecture Notes of the Institute for Computer Sciences, Social Informatics and Telecommunications Engineering

BT - Industrial Networks and Intelligent Systems: 12th EAI International Conference, INISCOM 2026: Proceedings

PB - Springer

T2 - 12th EAI International Conference on Industrial Networks and Intelligent Systems

Y2 - 26 February 2026 through 27 February 2026

ER -

Sandjaja FR, Abdul Majeed A, Abdullah A, Wickremasinghe G , Rafferty K , Sharma V. Policy design in zero-trust distributed networks: challenges and solutions. In Industrial Networks and Intelligent Systems: 12th EAI International Conference, INISCOM 2026: Proceedings. Springer. 2025. (Lecture Notes of the Institute for Computer Sciences, Social Informatics and Telecommunications Engineering ).

Policy design in zero-trust distributed networks: challenges and solutions

Abstract

Publication series

Conference

Embargoed Document

Fingerprint

Cite this