MEF 163 Draft Release 3 Zero Trust Certification Test Cases and Requirements

2024 May

Primary Resource for: Zero Trust

Product Portfolio: Zero Trust

Standard Type: Test Requirements & Abstract Test Suites


A Zero Trust Framework (ZTF), defined in MEF 118, is a cybersecurity architecture where users or clients (end users, applications, and other nonhuman Users, Devices, and Applications that request information from resources) are authenticated, authorized, and continuously validated before being granted access to, maintaining access to, or performing operations on applications.

The focus of this document is on the test cases and requirements for certification of Zero Trust (ZT) implementations. The certification of ZT implementation seen as key for enterprise customers to know about different offerings and solutions so that they can make informed decisions when purchasing ZT.

Standards published by MEF are intended for general distribution to the public and may be downloaded from this site and reproduced without charge. Any reproduction of MEF documents shall contain the following statement: “Reproduced with permission of MEF Forum.” All rights granted to MEF under applicable copyright laws are expressly reserved. No permission is granted to any recipient or user of MEF publications to modify any of the information contained therein and MEF disclaims all responsibility and liability for such modifications.

Be In the Industry—Join with industry peers to advance digital service & API standards.

Join MEF