Security Terms Explained

Several terms are used by Microsoft to describe its security services.

Conditional access: Automatically vetting a user, device, or app after user authentication but before granting access to a resource. Conditional access is designed to ensure all pieces involved in accessing the resource are trusted. A complete conditional access system requires that the user be licensed for Microsoft 365 E5, E5 Security, or all the services listed in the client-side section of this report.

Extended detection and response (XDR): A collection of technologies from one vendor that can share security incident information to accelerate detection and minimize risk and damage. Microsoft XDR platforms include Microsoft 365 Defender (clients) and Microsoft Defender for Cloud (servers).

Zero trust: An approach to security that assumes that no user, device, or network connection is inherently trusted and where access to all resources is constantly vetted. This is in contrast with earlier models that focused on perimeter-based security and assumed that traffic coming from within the network was trusted Users should be authorized at every point of access, and the system should offer only the privileges necessary. Organizations should secure, audit, and automate their security infrastructure as if they have already been breached.