I recently had the opportunity to participate in the creation of the third version of the Cloud Security Alliance’s “Deep Dive into the Software-Defined Perimeter (SDP) Guide.
The reason CSA started updating the SDP guidance more than a year ago is now playing out in real time. The internet is moving from human-speed exploitation to AI-speed exploitation, while most enterprise connectivity, patching, firewall, VPN, and approval workflows still operate on human-speed change cycles.
At the recent DoW Zero Trust Symposium, I opened my talk, Why Traditional Networking Fails Agentic AI: Identity-First Connectivity Matters for Zero Trust, with a simple point: exploit timelines are collapsing faster than traditional defensive processes can respond.
That was before the latest industry discussion around Anthropic’s Project Glasswing and Claude Mythos, which reinforced the same lesson: AI is compressing the window between vulnerability discovery, weaponization, and exploitation. Anthropic’s own Project Glasswing page says the window that once took months can now happen “in minutes with AI.”
This is why we started updating and now have released the CSA Software-Defined Perimeter (SDP) Architecture Guide v3.0. This is not only a refresh of a security architecture. It is a response to a structural reality: in an AI-speed exploitation environment, reachability itself becomes part of the attack surface. If a service is discoverable, routable, or probeable before identity and policy have authorized access, defenders are giving automation a target before trust has been established.
This update is a fundamental reimagining of how we establish trust. Zero Trust Architecture (ZTA), autonomous agentic AI, and converged IT/OT environments are now what define our world. By moving beyond traditional perimeter-based security, SDP offers a dynamic, identity-centric approach.
