[{"data":1,"prerenderedAt":473},["ShallowReactive",2],{"collection-blogs--1474429055":3,"_apollo:default":472},{"data":4,"meta":469},[5],{"id":6,"title":7,"excerpt":8,"slug":9,"createdAt":10,"updatedAt":11,"publishedAt":12,"backDate":13,"documentId":14,"imageUrl":15,"expertises":61,"author":284,"blocks":310,"seo":409},715,"Waarom Zero Trust faalt zonder grip op non-human identities","Mijn eerdere blog 'De blinde vlek in Zero Trust: identiteiten zonder mens' maakte één ding duidelijk. Veel Zero Trust-implementaties stoppen bij gebruikers.\nDat is geen slordigheid, maar een gevolg van aannames die diep in onze ontwerpen zitten. Zero Trust is in veel organisaties vormgegeven rond loginmomenten, sessies en menselijk gedrag. Maar cloudomgevingen draaien allang niet meer primair op mensen.","waarom-zero-trust-faalt-zonder-grip-op-non-human-identities","2026-06-02T11:58:34.723Z","2026-06-02T13:26:48.503Z","2026-06-02T13:26:49.084Z","2026-06-04","yy30w2g8idc57mjicjbuh3eb",{"id":16,"name":17,"alternativeText":18,"caption":18,"width":19,"height":20,"formats":21,"hash":55,"ext":23,"mime":26,"size":56,"url":57,"previewUrl":18,"provider":58,"provider_metadata":18,"createdAt":59,"updatedAt":59,"documentId":60,"publishedAt":59},1468,"Blog hero Waarom Zero Trust faalt.jpg",null,1280,500,{"large":22,"small":32,"medium":39,"thumbnail":47},{"ext":23,"url":24,"hash":25,"mime":26,"name":27,"path":18,"size":28,"width":29,"height":30,"sizeInBytes":31},".jpg","https://incredible-beef-2a6059b946.media.strapiapp.com/large_Blog_hero_Waarom_Zero_Trust_faalt_8bfb1140e9.jpg","large_Blog_hero_Waarom_Zero_Trust_faalt_8bfb1140e9","image/jpeg","large_Blog hero Waarom Zero Trust faalt.jpg",30,1000,391,30004,{"ext":23,"url":33,"hash":34,"mime":26,"name":35,"path":18,"size":36,"width":20,"height":37,"sizeInBytes":38},"https://incredible-beef-2a6059b946.media.strapiapp.com/small_Blog_hero_Waarom_Zero_Trust_faalt_8bfb1140e9.jpg","small_Blog_hero_Waarom_Zero_Trust_faalt_8bfb1140e9","small_Blog hero Waarom Zero Trust faalt.jpg",10.04,195,10036,{"ext":23,"url":40,"hash":41,"mime":26,"name":42,"path":18,"size":43,"width":44,"height":45,"sizeInBytes":46},"https://incredible-beef-2a6059b946.media.strapiapp.com/medium_Blog_hero_Waarom_Zero_Trust_faalt_8bfb1140e9.jpg","medium_Blog_hero_Waarom_Zero_Trust_faalt_8bfb1140e9","medium_Blog hero Waarom Zero Trust faalt.jpg",19.34,750,293,19342,{"ext":23,"url":48,"hash":49,"mime":26,"name":50,"path":18,"size":51,"width":52,"height":53,"sizeInBytes":54},"https://incredible-beef-2a6059b946.media.strapiapp.com/thumbnail_Blog_hero_Waarom_Zero_Trust_faalt_8bfb1140e9.jpg","thumbnail_Blog_hero_Waarom_Zero_Trust_faalt_8bfb1140e9","thumbnail_Blog hero Waarom Zero Trust faalt.jpg",2.95,245,96,2948,"Blog_hero_Waarom_Zero_Trust_faalt_8bfb1140e9",42.11,"https://incredible-beef-2a6059b946.media.strapiapp.com/Blog_hero_Waarom_Zero_Trust_faalt_8bfb1140e9.jpg","strapi-provider-upload-strapi-cloud","2026-06-02T11:54:33.456Z","bkry7r7sekupu3txzav9g8hh",[62],{"id":63,"title":64,"subTitle":65,"description":66,"shortDescription":67,"slug":68,"createdAt":69,"updatedAt":70,"publishedAt":71,"isCoreExpertise":72,"documentId":73,"image":74,"blocks":94,"midPageBlocks":180,"seo":279},1,"Azure","Hét cloudcomputing platform van Microsoft","Azure is het cloudcomputing platform van Microsoft, dat zowel Infrastructure as a Service (IaaS) als Platform as a Service (PaaS) biedt. Met dit platform kun je applicaties ontwikkelen of een compleet netwerk hosten, en dit alles op een relatief eenvoudige manier beheren. Omdat Azure wordt gehost in managed datacenters over de hele wereld, kun je jouw netwerk of applicatie wereldwijd beschikbaar maken. Microsoft biedt daarnaast een breed scala aan services, zoals Internet of Things (IoT), Azure Kubernetes, Artificial Intelligence (AI) en oplossingen voor het gebruik van Big Data.\n\nOnze Azure consultants, engineers en cloud-architecten hebben ervaring met de ontwikkeling, implementatie en het beheer van de verschillende mogelijkheden die Microsoft Azure ons biedt. Hierbij leveren wij iedere keer maatwerk, want het programma van eisen ziet er telkens anders uit. Of het nu gaat om de ondersteuning van een Azure team of het volledige beheer, onze Azure experts staan voor je klaar. Meer over ons werk lees je onder andere in onze Azure [klantcases](/kennisbank/klantcases/azure) en [blogs](/kennisbank/blogs/azure).\n\n","Onze Azure consultants, engineers en cloud-architecten hebben ervaring met de ontwikkeling, implementatie en het beheer van de verschillende mogelijkheden die Microsoft Azure ons biedt.","azure","2023-08-17T09:47:20.996Z","2025-04-11T13:11:55.618Z","2023-08-17T09:50:22.095Z",true,"eubwn704tlyata6v2q819fn7",{"id":75,"name":76,"alternativeText":18,"caption":18,"width":77,"height":78,"formats":79,"hash":88,"ext":81,"mime":84,"size":89,"url":90,"previewUrl":18,"provider":58,"provider_metadata":18,"createdAt":91,"updatedAt":91,"documentId":92,"publishedAt":93},657,"mircosoft azure web.png",282,130,{"thumbnail":80},{"ext":81,"url":82,"hash":83,"mime":84,"name":85,"path":18,"size":86,"width":52,"height":87},".png","https://incredible-beef-2a6059b946.media.strapiapp.com/thumbnail_mircosoft_azure_web_031897ebac.png","thumbnail_mircosoft_azure_web_031897ebac","image/png","thumbnail_mircosoft azure web.png",5.54,113,"mircosoft_azure_web_031897ebac",1.49,"https://incredible-beef-2a6059b946.media.strapiapp.com/mircosoft_azure_web_031897ebac.png","2024-04-05T12:52:48.184Z","z9c21qscgi7eh5jijkc40fzv","2026-01-05T12:38:34.018Z",[95,157],{"__component":96,"id":97,"title":98,"aside":18,"postType":99,"limit":100,"expertise":101},"strapi.related-kennisbank-list",165,"Lees meer over Azure","alle",3,[102],{"id":63,"title":64,"subTitle":65,"description":66,"shortDescription":67,"slug":68,"createdAt":69,"updatedAt":70,"publishedAt":71,"isCoreExpertise":72,"documentId":73,"image":103,"blocks":106,"midPageBlocks":117,"seo":141},{"id":75,"name":76,"alternativeText":18,"caption":18,"width":77,"height":78,"formats":104,"hash":88,"ext":81,"mime":84,"size":89,"url":90,"previewUrl":18,"provider":58,"provider_metadata":18,"createdAt":91,"updatedAt":91,"documentId":92,"publishedAt":93},{"thumbnail":105},{"ext":81,"url":82,"hash":83,"mime":84,"name":85,"path":18,"size":86,"width":52,"height":87},[107,108],{"__component":96,"id":97,"title":98,"aside":18,"postType":99,"limit":100},{"__component":109,"id":110,"titleLeft":111,"callToActionTextLeft":112,"callToActionLinkUrlLeft":113,"titleRight":114,"callToActionTextRight":115,"callToActionLinkUrlRight":116},"call-to-action.double",209,"Heb je een Azure expert nodig?","Neem contact met ons op","/contact","Zoek je een nieuwe baan?","Bekijk onze vacatures","/word-onze-collega/vacatures",[118,126,131,135],{"__component":119,"id":120,"title":121,"subTitle":18,"content":122,"callToActionText":123,"callToActionLink":113,"colorStyle":124,"showAsides":125},"global.alternating-page-section",25,"Azure Security: veiligheid in de cloud ","Voor organisaties is het belangrijk om de digitale infrastructuur te beveiligen in een steeds complexer wordend cyberlandschap. Onze experts helpen graag met behulp van Azure Security; een reeks beveiligingsdiensten en -functies die door Microsoft Azure wordt aangeboden om bedreigingen te detecteren, te voorkomen en erop te reageren. Enkele belangrijke componenten en functies van Azure Security waarmee wij werken zijn Azure Security Center, Microsoft Entra ID, Azure DDoS Protection en Azure Sentinel.","Neem contact op voor meer informatie","Sugar Glaze",false,{"__component":119,"id":127,"title":128,"subTitle":18,"content":129,"callToActionText":18,"callToActionLink":18,"colorStyle":130,"showAsides":125},26,"Azure Kubernetes Service (AKS)","Azure Kubernetes Service (AKS) helpt bij het beheren van applicaties die in containers draaien. Het vereenvoudigt en automatiseert de implementatie, het beheer en de operationele taken van Kubernetes-clusters. Door gebruik te maken van AKS kunnen organisaties zich richten op het ontwikkelen en beheren van hun applicaties, terwijl Microsoft de complexiteit van de Kubernetes-infrastructuur beheert. Hierdoor kunnen organisaties hun software efficiënt, betrouwbaar en kosteneffectief beheren. Doordat onze experts ruime kennis en ervaring hebben met AKS kunnen ze de klanten op een juiste manier helpen.","White",{"__component":119,"id":132,"title":133,"subTitle":18,"content":134,"callToActionText":18,"callToActionLink":18,"colorStyle":124,"showAsides":125},24,"Infrastructure as Code (IaC)","Infrastructure as Code (IaC) is het beheren van een Azure cloud-omgeving door middel van code en softwareontwikkelingstechnieken om infrastructuur te automatiseren, te configureren en te beheren. Het biedt versiebeheer voor configuraties, wat samenwerking en terugkeer naar eerdere versies vergemakkelijkt. Bovendien zorgt IaC voor consistentie in verschillende omgevingen en maakt het schaalvergroting eenvoudiger door configuraties te herhalen zonder handmatige ingrepen. \n\nAls je vragen hebt of ondersteuning nodig hebt, kunnen de Azure Experts je alles vertellen over Infrastructure as Code.",{"__component":136,"id":137,"title":138,"callToActionText":139,"callToActionLinkUrl":140,"body":18},"call-to-action.single",94,"Wil je weten wat onze collega's allemaal kunnen?","Lees de klantcase over ons werk bij Stichting Inlichtingenbureau","/klantcases/stichting-inlichtingenbureau-kiest-voor-migratie-naar-microsoft-azure",{"id":132,"metaTitle":142,"metaDescription":143,"structuredData":144},"Microsoft Azure-expertise – ShareValue helpt je vooruit","Van beheer tot DevOps: onze Azure-specialisten helpen je om cloudoplossingen slim en veilig in te richten en te optimaliseren.",{"url":145,"@type":146,"@context":147,"provider":148,"areaServed":152,"description":155,"serviceType":156},"https://www.sharevalue.nl/wat-we-doen/azure","Service","https://schema.org",{"url":149,"name":150,"@type":151},"https://www.sharevalue.nl","ShareValue","Organization",{"name":153,"@type":154},"Nederland","Country","ShareValue helpt organisaties om Microsoft Azure effectief in te zetten. Onze specialisten werken aan cloudmigraties, infrastructuur, security, automation en DevOps-oplossingen.","Microsoft Azure consultancy",{"__component":109,"id":110,"titleLeft":111,"callToActionTextLeft":112,"callToActionLinkUrlLeft":113,"titleRight":114,"callToActionTextRight":115,"callToActionLinkUrlRight":116,"iconUrlLeft":158,"iconUrlRight":171},{"id":159,"name":160,"alternativeText":18,"caption":18,"width":161,"height":162,"formats":18,"hash":163,"ext":164,"mime":165,"size":166,"url":167,"previewUrl":18,"provider":58,"provider_metadata":18,"createdAt":168,"updatedAt":169,"documentId":170,"publishedAt":93},6,"bulb.svg",71,70,"bulb_dd2e1d4efb",".svg","image/svg+xml",3.75,"https://incredible-beef-2a6059b946.media.strapiapp.com/bulb_dd2e1d4efb.svg","2023-08-17T08:31:37.036Z","2025-04-01T14:08:08.648Z","l2lglwkh4lf7ip36sjvs42rc",{"id":172,"name":173,"alternativeText":18,"caption":18,"width":162,"height":162,"formats":18,"hash":174,"ext":164,"mime":165,"size":175,"url":176,"previewUrl":18,"provider":58,"provider_metadata":18,"createdAt":177,"updatedAt":178,"documentId":179,"publishedAt":93},8,"briefcase.svg","briefcase_679abae475",4.49,"https://incredible-beef-2a6059b946.media.strapiapp.com/briefcase_679abae475.svg","2023-08-17T08:31:37.038Z","2025-01-24T15:53:51.531Z","bfdftlvwhj35dm37dzv4aujf",[181,217,247,277],{"__component":119,"id":120,"title":121,"subTitle":18,"content":122,"callToActionText":123,"callToActionLink":113,"colorStyle":124,"showAsides":125,"imageUrl":182},{"id":183,"name":184,"alternativeText":18,"caption":18,"width":19,"height":185,"formats":186,"hash":212,"ext":23,"mime":26,"size":213,"url":214,"previewUrl":18,"provider":58,"provider_metadata":18,"createdAt":215,"updatedAt":215,"documentId":216,"publishedAt":93},779,"security azure.jpg",850,{"large":187,"small":193,"medium":199,"thumbnail":205},{"ext":23,"url":188,"hash":189,"mime":26,"name":190,"path":18,"size":191,"width":29,"height":192},"https://incredible-beef-2a6059b946.media.strapiapp.com/large_security_azure_b1610cf1cb.jpg","large_security_azure_b1610cf1cb","large_security azure.jpg",107.3,664,{"ext":23,"url":194,"hash":195,"mime":26,"name":196,"path":18,"size":197,"width":20,"height":198},"https://incredible-beef-2a6059b946.media.strapiapp.com/small_security_azure_b1610cf1cb.jpg","small_security_azure_b1610cf1cb","small_security azure.jpg",39.16,332,{"ext":23,"url":200,"hash":201,"mime":26,"name":202,"path":18,"size":203,"width":44,"height":204},"https://incredible-beef-2a6059b946.media.strapiapp.com/medium_security_azure_b1610cf1cb.jpg","medium_security_azure_b1610cf1cb","medium_security azure.jpg",71.35,498,{"ext":23,"url":206,"hash":207,"mime":26,"name":208,"path":18,"size":209,"width":210,"height":211},"https://incredible-beef-2a6059b946.media.strapiapp.com/thumbnail_security_azure_b1610cf1cb.jpg","thumbnail_security_azure_b1610cf1cb","thumbnail_security azure.jpg",12.37,235,156,"security_azure_b1610cf1cb",150.42,"https://incredible-beef-2a6059b946.media.strapiapp.com/security_azure_b1610cf1cb.jpg","2024-08-08T08:50:26.921Z","z3xlbivuior2upad6adbxjgz",{"__component":119,"id":127,"title":128,"subTitle":18,"content":129,"callToActionText":18,"callToActionLink":18,"colorStyle":130,"showAsides":125,"imageUrl":218},{"id":219,"name":220,"alternativeText":18,"caption":18,"width":19,"height":185,"formats":221,"hash":242,"ext":23,"mime":26,"size":243,"url":244,"previewUrl":18,"provider":58,"provider_metadata":18,"createdAt":245,"updatedAt":245,"documentId":246,"publishedAt":93},780,"containers.jpg",{"large":222,"small":227,"medium":232,"thumbnail":237},{"ext":23,"url":223,"hash":224,"mime":26,"name":225,"path":18,"size":226,"width":29,"height":192},"https://incredible-beef-2a6059b946.media.strapiapp.com/large_containers_2e766510ad.jpg","large_containers_2e766510ad","large_containers.jpg",163.19,{"ext":23,"url":228,"hash":229,"mime":26,"name":230,"path":18,"size":231,"width":20,"height":198},"https://incredible-beef-2a6059b946.media.strapiapp.com/small_containers_2e766510ad.jpg","small_containers_2e766510ad","small_containers.jpg",49.69,{"ext":23,"url":233,"hash":234,"mime":26,"name":235,"path":18,"size":236,"width":44,"height":204},"https://incredible-beef-2a6059b946.media.strapiapp.com/medium_containers_2e766510ad.jpg","medium_containers_2e766510ad","medium_containers.jpg",101.49,{"ext":23,"url":238,"hash":239,"mime":26,"name":240,"path":18,"size":241,"width":210,"height":211},"https://incredible-beef-2a6059b946.media.strapiapp.com/thumbnail_containers_2e766510ad.jpg","thumbnail_containers_2e766510ad","thumbnail_containers.jpg",12.65,"containers_2e766510ad",240.51,"https://incredible-beef-2a6059b946.media.strapiapp.com/containers_2e766510ad.jpg","2024-08-08T08:54:58.426Z","idshbfmg66aak9yxdr9d22c7",{"__component":119,"id":132,"title":133,"subTitle":18,"content":134,"callToActionText":18,"callToActionLink":18,"colorStyle":124,"showAsides":125,"imageUrl":248},{"id":249,"name":250,"alternativeText":18,"caption":18,"width":19,"height":185,"formats":251,"hash":272,"ext":23,"mime":26,"size":273,"url":274,"previewUrl":18,"provider":58,"provider_metadata":18,"createdAt":275,"updatedAt":275,"documentId":276,"publishedAt":93},781,"infrastructure.jpg",{"large":252,"small":257,"medium":262,"thumbnail":267},{"ext":23,"url":253,"hash":254,"mime":26,"name":255,"path":18,"size":256,"width":29,"height":192},"https://incredible-beef-2a6059b946.media.strapiapp.com/large_infrastructure_bf66532759.jpg","large_infrastructure_bf66532759","large_infrastructure.jpg",246.61,{"ext":23,"url":258,"hash":259,"mime":26,"name":260,"path":18,"size":261,"width":20,"height":198},"https://incredible-beef-2a6059b946.media.strapiapp.com/small_infrastructure_bf66532759.jpg","small_infrastructure_bf66532759","small_infrastructure.jpg",69.57,{"ext":23,"url":263,"hash":264,"mime":26,"name":265,"path":18,"size":266,"width":44,"height":204},"https://incredible-beef-2a6059b946.media.strapiapp.com/medium_infrastructure_bf66532759.jpg","medium_infrastructure_bf66532759","medium_infrastructure.jpg",149.51,{"ext":23,"url":268,"hash":269,"mime":26,"name":270,"path":18,"size":271,"width":210,"height":211},"https://incredible-beef-2a6059b946.media.strapiapp.com/thumbnail_infrastructure_bf66532759.jpg","thumbnail_infrastructure_bf66532759","thumbnail_infrastructure.jpg",15.74,"infrastructure_bf66532759",374.88,"https://incredible-beef-2a6059b946.media.strapiapp.com/infrastructure_bf66532759.jpg","2024-08-08T08:58:52.414Z","bmkl03ingwf6ms8pdk5jvmx5",{"__component":136,"id":137,"title":138,"callToActionText":139,"callToActionLinkUrl":140,"body":18,"imageUrl":278},{"id":159,"name":160,"alternativeText":18,"caption":18,"width":161,"height":162,"formats":18,"hash":163,"ext":164,"mime":165,"size":166,"url":167,"previewUrl":18,"provider":58,"provider_metadata":18,"createdAt":168,"updatedAt":169,"documentId":170,"publishedAt":93},{"id":132,"metaTitle":142,"metaDescription":143,"structuredData":280,"metaImage":18,"metaSocial":283},{"url":145,"@type":146,"@context":147,"provider":281,"areaServed":282,"description":155,"serviceType":156},{"url":149,"name":150,"@type":151},{"name":153,"@type":154},[],{"id":285,"name":286,"jobTitle":287,"about":18,"createdAt":288,"updatedAt":289,"publishedAt":290,"documentId":291,"image":292,"contactOptions":309},36,"Gert","Engineer & Architect","2023-08-18T08:37:46.157Z","2024-03-18T14:39:44.060Z","2023-08-18T08:37:45.403Z","issofzsvhgrwftfjuizdg4ac",{"id":293,"name":294,"alternativeText":18,"caption":18,"width":295,"height":296,"formats":297,"hash":304,"ext":81,"mime":84,"size":305,"url":306,"previewUrl":18,"provider":58,"provider_metadata":18,"createdAt":307,"updatedAt":307,"documentId":308,"publishedAt":93},604,"Gert websitefoto.png",278,326,{"thumbnail":298},{"ext":81,"url":299,"hash":300,"mime":84,"name":301,"path":18,"size":302,"width":303,"height":211},"https://incredible-beef-2a6059b946.media.strapiapp.com/thumbnail_Gert_websitefoto_cab2bacf46.png","thumbnail_Gert_websitefoto_cab2bacf46","thumbnail_Gert websitefoto.png",20.16,133,"Gert_websitefoto_cab2bacf46",21.32,"https://incredible-beef-2a6059b946.media.strapiapp.com/Gert_websitefoto_cab2bacf46.png","2024-03-18T14:38:40.376Z","x8md4b4efqc3aih2mw7g0ro3",[],[311,316,319,322,325,328,331,334,337,340,343,347,365],{"__component":312,"id":313,"title":18,"asideText":18,"underline":125,"centered":125,"blankAside":125,"aside":314,"content":315,"introductionText":18},"global.pagesection",5161,"","\nDe vraag is dus niet of Zero Trust faalt.\nDe vraag is: welke ontwerp¬aannames houden het tegen?\n\n_De blog 'De blinde vlek in Zero Trust: identiteiten zonder mens' [lees je hier](https://sharevalue.nl/blogs/de-blinde-vlek-in-zero-trust-identiteiten-zonder-mens) terug._\n\n![image1.png](https://incredible-beef-2a6059b946.media.strapiapp.com/image1_efc91e9843.png)",{"__component":312,"id":317,"title":18,"asideText":18,"underline":125,"centered":125,"blankAside":125,"aside":18,"content":318,"introductionText":18},5162,"## Ontwerpaannames die ongemerkt niet meer kloppen \n\nZero Trust rust op drie principes:\n- Verify explicitly: Elke toegang moet expliciet worden gevalideerd op basis van identiteit en context\n- Use least privilege: Identiteiten krijgen alleen de minimale rechten die nodig zijn om hun taak uit te voeren\n- Assume breach: Het ontwerp gaat ervan uit dat misbruik kan plaatsvinden, en beperkt vooraf de impact\n\nDeze principes zijn universeel. Maar de manier waarop we ze toepassen is dat niet.\nBij non-human identities breken vooral de impliciete aannames onder deze principes zonder dat we het merken.",{"__component":312,"id":320,"title":18,"asideText":18,"underline":125,"centered":125,"blankAside":125,"aside":18,"content":321,"introductionText":18},5163,"## Aanname 1: Verificatie gebeurt bij een loginmoment\n\nIn veel ontwerpen is verificatie gekoppeld aan één expliciet moment: de login. Bij gebruikers werkt dat prima. Maar workloads loggen niet in.\nEr is geen interactief moment waarop beleid wordt geëvalueerd en daarna “klaar” is. Authenticatie gebeurt automatisch, via tokens, claims en context, en wordt daarna vaak als vertrouwd beschouwd.\n\nHet probleem is niet dat verificatie ontbreekt. Het probleem is dat verificatie impliciet wordt, omdat we niet expliciet ontwerpen voor workloads. Als verificatie impliciet is, wordt vertrouwen dat ook.\n\n![image2.png](https://incredible-beef-2a6059b946.media.strapiapp.com/image2_697f4b1098.png)",{"__component":312,"id":323,"title":18,"asideText":18,"underline":125,"centered":125,"blankAside":125,"aside":18,"content":324,"introductionText":18},5164,"## Aanname 2: Least privilege is een configuratiekeuze\n\nLeast privilege wordt vaak gezien als iets dat je instelt. Een rol, een policy, een permissie.\nIn de praktijk groeit toegang mee met functionaliteit:\n- nieuwe features vragen extra rechten\n- afhankelijkheden nemen toe\n- permissies worden zelden ingetrokken\n\nBij gebruikers valt dit op. Bij non-human identities blijft het meestal onzichtbaar.\nHet gevolg is voorspelbaar:\n- kleine workloads met brede rechten\n- toegang die ouder is dan de applicatie zelf\n- privileges die “tijdelijk” waren, maar permanent zijn geworden\n\nDit is geen operationele fout. Het is een ontwerpfout. Bij non-human identities bepaalt least privilege niet alleen wat mag, maar ook hoe groot de impact is als het misgaat.",{"__component":312,"id":326,"title":18,"asideText":18,"underline":125,"centered":125,"blankAside":125,"aside":18,"content":327,"introductionText":18},5165,"## Aanname 3: Assume breach begint bij incident response\n\n“Assume breach” wordt vaak geassocieerd met wat je doet na een incident. Voor workloads is dat te laat.\nMisbruik van non-human identities blijft vaak lang onopgemerkt:\n- geen gebruiker die iets merkt\n- geen device dat afwijkend gedrag vertoont\n- geen login die faalt\n\nDaarom moet assume breach bij workloads beginnen in het ontwerp.\n- Beperkte blast radius: Als een identiteit wordt misbruikt, is de impact vooraf begrensd.\n- Duidelijke scheiding tussen omgevingen: Toegang tot productie staat los van ontwikkel- of testomgevingen.\n- Geen impliciet vertrouwen tussen services: Services vertrouwen elkaar niet automatisch, ook niet binnen dezelfde omgeving.\n\nNiet als noodscenario, maar als structurele architectuurkeuze.\n\n![image3.png](https://incredible-beef-2a6059b946.media.strapiapp.com/image3_d4ff3b0387.png)",{"__component":312,"id":329,"title":18,"asideText":18,"underline":125,"centered":125,"blankAside":125,"aside":18,"content":330,"introductionText":18},5166,"## Signalen dat je Zero Trust-ontwerp niet klopt\n\nZonder tools of dashboards kun je vaak al zien dat een Zero Trust-ontwerp niet klopt.\nWaarschuwingssignalen zijn onder andere:\n- workloads die dezelfde identiteit delen\n- één identiteit die meerdere omgevingen kan benaderen\n- rechten die langer bestaan dan de workload zelf\n- toegang die wordt verklaard met “dat is handig”\n\nIn de praktijk worden deze signalen zelden als incident gezien, maar bijna altijd als “hoe het nu eenmaal gegroeid is”.\nDit zijn geen implementatiedetails. Dit zijn ontwerpgevolgen.",{"__component":312,"id":332,"title":18,"asideText":18,"underline":125,"centered":125,"blankAside":125,"aside":18,"content":333,"introductionText":18},5167,"## Wat er moet veranderen vóórdat tooling helpt\n\nAls Zero Trust ook voor non-human identities moet werken, vraagt dat om een andere manier van denken:\n- identity als lifecycle, niet als account\n- trust boundaries gebaseerd op identiteit en context, niet op netwerk\n- architectuur die bepaalt welke identiteiten ontstaan, niet andersom\n\nZonder deze verschuiving wordt Zero Trust een verzameling controles, geen samenhangend model.",{"__component":312,"id":335,"title":18,"asideText":18,"underline":125,"centered":125,"blankAside":125,"aside":18,"content":336,"introductionText":18},5168,"## Welke vragen je na deze blog zou moeten stellen\n\nDeze blog introduceert geen nieuwe controls of tooling. Maar ze zou wél moeten veranderen hoe je naar je architectuur kijkt.\nNa deze blog zou je jezelf bij elke workload moeten afvragen:\n- Waar vindt verificatie hier écht plaats? Is dat een expliciet ontwerpkeuze, of een aanname die we nooit hebben uitgesproken?\n- Wat is hier de blast radius van vertrouwen? Welke impact accepteren we als deze identiteit vandaag wordt misbruikt?\n- Welke rechten zijn hier historisch gegroeid? En welke zijn bewust gekozen?\n- Welke identiteiten bestaan bij gratie van architectuur, niet beleid? En wat zegt dat over onze ontwerpkeuzes?\n\nDit zijn geen implementatievragen. Dit zijn architectuurvragen.\nAls je ze niet kunt beantwoorden, is dat geen tekortkoming van tooling, maar een signaal dat het ontwerp zelf nooit expliciet is gemaakt.",{"__component":312,"id":338,"title":18,"asideText":18,"underline":125,"centered":125,"blankAside":125,"aside":18,"content":339,"introductionText":18},5169,"## Vooruitblik: waar dit echt misgaat\n\nDeze blog ging niet over oplossingen, maar over ontwerpkeuzes die vaak onzichtbaar blijven.\nIn de volgende blog maken we zichtbaar waar deze keuzes ontstaan. In cloud- en AI-architecturen ontstaan identiteiten sneller dan governance kan bijhouden. Niet als theoretisch probleem, maar als direct gevolg van moderne ontwerpkeuzes. Want architectuur bepaalt niet alleen hoe systemen werken, maar ook hoeveel vertrouwen ze automatisch krijgen.\n\nKun je hulp gebruiken bij jouw Zero Trust-ontwerp? Neem [contact](https://sharevalue.nl/contact) met ons op en onze Azure-architect helpt je bepalen waar vertrouwen, identiteit en toegang explicieter ingericht kunnen worden.\n",{"__component":341,"id":342,"title":18,"showBlankAside":125},"global.social-sharing",578,{"__component":344,"id":345,"name":286,"jobTitle":346},"strapi.author-card",455,"Azure Engineer & Architect",{"__component":109,"id":348,"titleLeft":349,"callToActionTextLeft":112,"callToActionLinkUrlLeft":113,"titleRight":350,"callToActionTextRight":351,"callToActionLinkUrlRight":352,"iconUrlLeft":353,"iconUrlRight":364},719,"Heb je een Azure Architect nodig?","Kom je werken in ons Azure-team?","Klik hier","/word-onze-collega",{"id":354,"name":355,"alternativeText":18,"caption":18,"width":356,"height":357,"formats":18,"hash":358,"ext":164,"mime":165,"size":359,"url":360,"previewUrl":18,"provider":58,"provider_metadata":18,"createdAt":361,"updatedAt":362,"documentId":363,"publishedAt":93},372,"magnifier.svg",49,60,"magnifier_d084afba36",1.05,"https://incredible-beef-2a6059b946.media.strapiapp.com/magnifier_d084afba36.svg","2023-11-03T11:13:25.446Z","2026-05-12T12:19:53.518Z","e7czsfz9jg7oi93q44vomebz",{"id":172,"name":173,"alternativeText":18,"caption":18,"width":162,"height":162,"formats":18,"hash":174,"ext":164,"mime":165,"size":175,"url":176,"previewUrl":18,"provider":58,"provider_metadata":18,"createdAt":177,"updatedAt":178,"documentId":179,"publishedAt":93},{"__component":96,"id":366,"title":98,"aside":18,"postType":367,"limit":100,"expertise":368},512,"blogs",[369],{"id":63,"title":64,"subTitle":65,"description":66,"shortDescription":67,"slug":68,"createdAt":69,"updatedAt":70,"publishedAt":71,"isCoreExpertise":72,"documentId":73,"image":370,"blocks":373,"midPageBlocks":380,"seo":404},{"id":75,"name":76,"alternativeText":18,"caption":18,"width":77,"height":78,"formats":371,"hash":88,"ext":81,"mime":84,"size":89,"url":90,"previewUrl":18,"provider":58,"provider_metadata":18,"createdAt":91,"updatedAt":91,"documentId":92,"publishedAt":93},{"thumbnail":372},{"ext":81,"url":82,"hash":83,"mime":84,"name":85,"path":18,"size":86,"width":52,"height":87},[374,377],{"__component":96,"id":97,"title":98,"aside":18,"postType":99,"limit":100,"expertise":375},[376],{"id":63,"title":64,"subTitle":65,"description":66,"shortDescription":67,"slug":68,"createdAt":69,"updatedAt":70,"publishedAt":71,"isCoreExpertise":72,"documentId":73},{"__component":109,"id":110,"titleLeft":111,"callToActionTextLeft":112,"callToActionLinkUrlLeft":113,"titleRight":114,"callToActionTextRight":115,"callToActionLinkUrlRight":116,"iconUrlLeft":378,"iconUrlRight":379},{"id":159,"name":160,"alternativeText":18,"caption":18,"width":161,"height":162,"formats":18,"hash":163,"ext":164,"mime":165,"size":166,"url":167,"previewUrl":18,"provider":58,"provider_metadata":18,"createdAt":168,"updatedAt":169,"documentId":170,"publishedAt":93},{"id":172,"name":173,"alternativeText":18,"caption":18,"width":162,"height":162,"formats":18,"hash":174,"ext":164,"mime":165,"size":175,"url":176,"previewUrl":18,"provider":58,"provider_metadata":18,"createdAt":177,"updatedAt":178,"documentId":179,"publishedAt":93},[381,388,395,402],{"__component":119,"id":120,"title":121,"subTitle":18,"content":122,"callToActionText":123,"callToActionLink":113,"colorStyle":124,"showAsides":125,"imageUrl":382},{"id":183,"name":184,"alternativeText":18,"caption":18,"width":19,"height":185,"formats":383,"hash":212,"ext":23,"mime":26,"size":213,"url":214,"previewUrl":18,"provider":58,"provider_metadata":18,"createdAt":215,"updatedAt":215,"documentId":216,"publishedAt":93},{"large":384,"small":385,"medium":386,"thumbnail":387},{"ext":23,"url":188,"hash":189,"mime":26,"name":190,"path":18,"size":191,"width":29,"height":192},{"ext":23,"url":194,"hash":195,"mime":26,"name":196,"path":18,"size":197,"width":20,"height":198},{"ext":23,"url":200,"hash":201,"mime":26,"name":202,"path":18,"size":203,"width":44,"height":204},{"ext":23,"url":206,"hash":207,"mime":26,"name":208,"path":18,"size":209,"width":210,"height":211},{"__component":119,"id":127,"title":128,"subTitle":18,"content":129,"callToActionText":18,"callToActionLink":18,"colorStyle":130,"showAsides":125,"imageUrl":389},{"id":219,"name":220,"alternativeText":18,"caption":18,"width":19,"height":185,"formats":390,"hash":242,"ext":23,"mime":26,"size":243,"url":244,"previewUrl":18,"provider":58,"provider_metadata":18,"createdAt":245,"updatedAt":245,"documentId":246,"publishedAt":93},{"large":391,"small":392,"medium":393,"thumbnail":394},{"ext":23,"url":223,"hash":224,"mime":26,"name":225,"path":18,"size":226,"width":29,"height":192},{"ext":23,"url":228,"hash":229,"mime":26,"name":230,"path":18,"size":231,"width":20,"height":198},{"ext":23,"url":233,"hash":234,"mime":26,"name":235,"path":18,"size":236,"width":44,"height":204},{"ext":23,"url":238,"hash":239,"mime":26,"name":240,"path":18,"size":241,"width":210,"height":211},{"__component":119,"id":132,"title":133,"subTitle":18,"content":134,"callToActionText":18,"callToActionLink":18,"colorStyle":124,"showAsides":125,"imageUrl":396},{"id":249,"name":250,"alternativeText":18,"caption":18,"width":19,"height":185,"formats":397,"hash":272,"ext":23,"mime":26,"size":273,"url":274,"previewUrl":18,"provider":58,"provider_metadata":18,"createdAt":275,"updatedAt":275,"documentId":276,"publishedAt":93},{"large":398,"small":399,"medium":400,"thumbnail":401},{"ext":23,"url":253,"hash":254,"mime":26,"name":255,"path":18,"size":256,"width":29,"height":192},{"ext":23,"url":258,"hash":259,"mime":26,"name":260,"path":18,"size":261,"width":20,"height":198},{"ext":23,"url":263,"hash":264,"mime":26,"name":265,"path":18,"size":266,"width":44,"height":204},{"ext":23,"url":268,"hash":269,"mime":26,"name":270,"path":18,"size":271,"width":210,"height":211},{"__component":136,"id":137,"title":138,"callToActionText":139,"callToActionLinkUrl":140,"body":18,"imageUrl":403},{"id":159,"name":160,"alternativeText":18,"caption":18,"width":161,"height":162,"formats":18,"hash":163,"ext":164,"mime":165,"size":166,"url":167,"previewUrl":18,"provider":58,"provider_metadata":18,"createdAt":168,"updatedAt":169,"documentId":170,"publishedAt":93},{"id":132,"metaTitle":142,"metaDescription":143,"structuredData":405,"metaImage":18,"metaSocial":408},{"url":145,"@type":146,"@context":147,"provider":406,"areaServed":407,"description":155,"serviceType":156},{"url":149,"name":150,"@type":151},{"name":153,"@type":154},[],{"id":410,"metaTitle":7,"metaDescription":411,"structuredData":412,"metaImage":429,"metaSocial":468},654,"Veel Zero Trust-ontwerpen zijn nog gericht op gebruikers. Deze blog laat zien waarom non-human identities om expliciete ontwerpkeuzes vragen.",{"url":413,"@type":414,"image":415,"author":418,"@context":147,"headline":7,"publisher":421,"inLanguage":424,"description":425,"dateModified":426,"datePublished":426,"mainEntityOfPage":427},"https://sharevalue.nl/blogs/waarom-zero-trust-faalt-zonder-grip-op-non-human-identities/","BlogPosting",{"url":416,"@type":417},"https://incredible-beef-2a6059b946.media.strapiapp.com/image1_efc91e9843.png","ImageObject",{"name":286,"@type":419,"jobTitle":287,"worksFor":420},"Person",{"name":150,"@type":151},{"logo":422,"name":150,"@type":151},{"url":423,"@type":417},"https://sharevalue.nl/wp-content/uploads/logo-sharevalue.png","nl-NL","Lees waarom Zero Trust-ontwerpen tekortschieten als non-human identities, rechten en trust boundaries niet expliciet zijn ingericht.","2026-06-02",{"@id":413,"@type":428},"WebPage",{"id":430,"name":431,"alternativeText":18,"caption":18,"width":432,"height":433,"formats":434,"hash":462,"ext":23,"mime":26,"size":463,"url":464,"previewUrl":18,"provider":58,"provider_metadata":18,"createdAt":465,"updatedAt":465,"documentId":466,"publishedAt":467},1472,"OP afb Blog Gert Zero Trust 2 van 4.jpg",1200,628,{"large":435,"small":442,"medium":449,"thumbnail":456},{"ext":23,"url":436,"hash":437,"mime":26,"name":438,"path":18,"size":439,"width":29,"height":440,"sizeInBytes":441},"https://incredible-beef-2a6059b946.media.strapiapp.com/large_OP_afb_Blog_Gert_Zero_Trust_2_van_4_e134c501b8.jpg","large_OP_afb_Blog_Gert_Zero_Trust_2_van_4_e134c501b8","large_OP afb Blog Gert Zero Trust 2 van 4.jpg",50.04,523,50040,{"ext":23,"url":443,"hash":444,"mime":26,"name":445,"path":18,"size":446,"width":20,"height":447,"sizeInBytes":448},"https://incredible-beef-2a6059b946.media.strapiapp.com/small_OP_afb_Blog_Gert_Zero_Trust_2_van_4_e134c501b8.jpg","small_OP_afb_Blog_Gert_Zero_Trust_2_van_4_e134c501b8","small_OP afb Blog Gert Zero Trust 2 van 4.jpg",18.15,262,18151,{"ext":23,"url":450,"hash":451,"mime":26,"name":452,"path":18,"size":453,"width":44,"height":454,"sizeInBytes":455},"https://incredible-beef-2a6059b946.media.strapiapp.com/medium_OP_afb_Blog_Gert_Zero_Trust_2_van_4_e134c501b8.jpg","medium_OP_afb_Blog_Gert_Zero_Trust_2_van_4_e134c501b8","medium_OP afb Blog Gert Zero Trust 2 van 4.jpg",32.93,393,32932,{"ext":23,"url":457,"hash":458,"mime":26,"name":459,"path":18,"size":159,"width":52,"height":460,"sizeInBytes":461},"https://incredible-beef-2a6059b946.media.strapiapp.com/thumbnail_OP_afb_Blog_Gert_Zero_Trust_2_van_4_e134c501b8.jpg","thumbnail_OP_afb_Blog_Gert_Zero_Trust_2_van_4_e134c501b8","thumbnail_OP afb Blog Gert Zero Trust 2 van 4.jpg",128,6003,"OP_afb_Blog_Gert_Zero_Trust_2_van_4_e134c501b8",63.81,"https://incredible-beef-2a6059b946.media.strapiapp.com/OP_afb_Blog_Gert_Zero_Trust_2_van_4_e134c501b8.jpg","2026-06-02T13:22:40.983Z","p21c3z6mloqcmqf2pphsotym","2026-06-02T13:22:40.984Z",[],{"pagination":470},{"page":63,"pageSize":471},100,{},1780406958930]