A good implemented zone-based security model (e.g. internal-dmz-external) is usually still more secure than a bad "zero-trust" security model. So if you feel comfortable with zone-based security, go for it, you can build zero-trust on top of it, all the time :)

Sign in to participate in the conversation
Sheogorath's Microblog

This is my personal microblog. It's filled with my fun, joy and silliness.