* [Blog](https://www2.paloaltonetworks.com/blog)
* [SASE](https://www2.paloaltonetworks.com/blog/sase/)
* [Use-Cases](https://www2.paloaltonetworks.com/blog/sase/category/use-cases/)
* Flying for the holidays? ...

# Flying for the holidays? Consider it a ZTNA 2.0 experience.

[](https://www.facebook.com/sharer/sharer.php?u=https%3A%2F%2Fwww2.paloaltonetworks.com%2Fblog%2Fsase%2Fflying-for-the-holidays-consider-it-a-ztna-2-0-experience%2F)  
[](https://twitter.com/share?text=Flying+for+the+holidays%3F+Consider+it+a+ZTNA+2.0+experience.&url=https%3A%2F%2Fwww2.paloaltonetworks.com%2Fblog%2Fsase%2Fflying-for-the-holidays-consider-it-a-ztna-2-0-experience%2F)  
[](https://www.linkedin.com/shareArticle?mini=true&url=https%3A%2F%2Fwww2.paloaltonetworks.com%2Fblog%2Fsase%2Fflying-for-the-holidays-consider-it-a-ztna-2-0-experience%2F&title=Flying+for+the+holidays%3F+Consider+it+a+ZTNA+2.0+experience.&summary=&source=)  
[](https://www.paloaltonetworks.com//www.reddit.com/submit?url=https://www2.paloaltonetworks.com/blog/sase/flying-for-the-holidays-consider-it-a-ztna-2-0-experience/&ts=markdown)  
\[\](mailto:?subject=Flying for the holidays? Consider it a ZTNA 2.0 experience.)  
Link copied  
By [Don Meyer](https://www.paloaltonetworks.com/blog/author/don-meyer/?ts=markdown "Posts by Don Meyer")  
Dec 20, 2022  
4 minutes  
[Use-Cases](https://www.paloaltonetworks.com/blog/sase/category/use-cases/?ts=markdown)  
[ZTNA 2.0](https://www.paloaltonetworks.com/blog/tag/ztna-2-0/?ts=markdown)

This post is also available in: [日本語 (Japanese)](https://www2.paloaltonetworks.com/blog/sase/flying-for-the-holidays-consider-it-a-ztna-2-0-experience/?lang=ja "Switch to Japanese(日本語)")

Welcome to the holiday season, the busiest travel time of the year. As the classic carol goes, there really is no place like home for the holidays. This means many of us are making our way through airports now to spend time with family and friends.

For those of us who haven't traveled in a while, we'll also be brushing up on the latest airport security requirements. Let's face it, no one wants to be the person who has to throw away that expensive new hand lotion we bought because it exceeds the Travel Security Administration (TSA)'s 3.4 oz carry-on [liquids rule](https://www.tsa.gov/travel/security-screening/liquids-rule).

The average traveler may wonder, what's the difference between a 3.2 oz bottle of lotion in a quart-sized bag compared to just taking the 5.2 oz tube you already have in your backpack? Honestly, we aren't going to be able to answer that question in this blog. But we do know airport and airline security experts have developed these protocols and procedures for a good reason: safety.

Information technology (IT) security policies and procedures can sometimes seem as arbitrary to the average employee as the TSA's liquids rule. While your IT team says the purpose of IT security policies is to keep company data and applications secure, it can seem like these rules exist to keep you from easily accessing necessary resources to work efficiently.

This is where zero trust network access (ZTNA) 2.0 comes in. [ZTNA 2.0](https://www.paloaltonetworks.com/sase/ztna) can help both IT security teams and employees work efficiently and securely, eliminating the frustrations that come from seemingly random rules that are meant to keep us safe but, in practice, just seem to make us late for flights (or unable to get our projects done on time).

[ZTNA 2.0](https://www.paloaltonetworks.com/cyberpedia/what-is-zero-trust-network-access-2-0) is comprised of five key principles, and it works within an IT infrastructure like the various security points air travelers encounter during air travel.

# The 5 principles of ZTNA 2.0 explained as airline travel

Here's what each of the five principles of ZTNA 2.0 look like if we consider each principle as a part of the airline travel experience.

1. [**Least privilege access**](https://www.paloaltonetworks.com/blog/2022/05/ztna-1-0-violates-principle-of-least-privilege/)\*\*.\*\*Within an organization, least privilege access enables precise access control at the application and sub-application levels, independent of network constructs such as IP addresses and port numbers. In terms of air travel, this is similar to the boarding pass that gives you access to a specific seat on a specific plane.
2. [**Continuous trust verification**](https://www.paloaltonetworks.com/blog/2022/05/allow-and-ignore-model-is-a-recipe-for-disaster/)**.** After users access an application, trust verification continues based on changes in device posture, user behavior, and application behavior. In terms of air travel, this is similar to when an unruly flight passenger is escorted off a plane; their behavior didn't pass the airline's trust assessment.
3. [**Continuous security inspection**](https://www.paloaltonetworks.com/blog/2022/06/security-inspection-problem/)**.** Airline passengers and their belongings go through baggage and body scanners before getting to the gates and on a plane. Similarly, ZTNA 2.0 uses deep, continuous inspection of all application traffic, including for allowed connections, to help prevent threats, including zero-day threats.
4. [**Protection of all data**](https://www.paloaltonetworks.com/blog/2022/06/consistent-data-protection-requires-a-new-approach/) and 5. [**security for all applications**](https://www.paloaltonetworks.com/blog/2022/06/ztna-1-0-cant-secure-all-apps/)**.** Like an airline tracking your luggage, ZTNA 2.0 provides consistent data control across all enterprise applications, including modern cloud-native applications, private legacy applications, and SaaS applications, with a single data loss prevention (DLP) policy.

# Reduce stress levels with ZTNA 2.0

Just like holiday airline travel, it can be stressful to protect and secure employees, apps, and data across your company or organization. The ZTNA 2.0 principles and architectural requirements provide IT security teams a framework and the technology so every employee can access the data and applications they need on any device they choose, wherever they work --- all while still meeting strict security requirements.

Interested in learning more about ZTNA 2.0? We have multiple resources [collected here](https://www.paloaltonetworks.com/engage/prisma-sase-ztna-2-0) that explain how ZTNA 2.0 can help you secure the future of work.

*** ** * ** ***

## Related Blogs

### [Product Features](https://www.paloaltonetworks.com/blog/sase/category/product-features/?ts=markdown), [Products and Services](https://www.paloaltonetworks.com/blog/category/products-and-services/?ts=markdown), [SD-WAN](https://www.paloaltonetworks.com/blog/sase/category/sd-wan/?ts=markdown), [Use-Cases](https://www.paloaltonetworks.com/blog/sase/category/use-cases/?ts=markdown)

[#### Securing your Branches with Zero Compromise](https://www2.paloaltonetworks.com/blog/sase/securing-branches-zero-compromise/)

### [Remote Workforce](https://www.paloaltonetworks.com/blog/category/remote-workforce/?ts=markdown), [Use-Cases](https://www.paloaltonetworks.com/blog/sase/category/use-cases/?ts=markdown)

[#### Start Building Your Zero Trust Architecture with ZTNA 2.0](https://www2.paloaltonetworks.com/blog/sase/start-building-your-zero-trust-architecture-with-ztna-2-0/)

### [Customer Spotlight](https://www.paloaltonetworks.com/blog/category/customer-spotlight/?ts=markdown), [Remote Workforce](https://www.paloaltonetworks.com/blog/category/remote-workforce/?ts=markdown), [Use-Cases](https://www.paloaltonetworks.com/blog/sase/category/use-cases/?ts=markdown)

[#### We don't just recommend ZTNA 2.0. We also use it.](https://www2.paloaltonetworks.com/blog/sase/we-dont-just-recommend-ztna-2-0-we-also-use-it/)

### [Healthcare](https://www.paloaltonetworks.com/blog/category/healthcare/?ts=markdown), [Partners](https://www.paloaltonetworks.com/blog/category/partners/?ts=markdown), [Use-Cases](https://www.paloaltonetworks.com/blog/sase/category/use-cases/?ts=markdown)

[#### How Zero Trust Accelerates a More Secure Infrastructure for Healthcare](https://www2.paloaltonetworks.com/blog/sase/how-zero-trust-accelerates-a-more-secure-infrastructure-for-healthcare/)

### [Uncategorized](https://www.paloaltonetworks.com/blog/category/uncategorized/?ts=markdown), [Use-Cases](https://www.paloaltonetworks.com/blog/sase/category/use-cases/?ts=markdown)

[#### Solve Your Remote Workforce Needs in a Snap with ADEM](https://www2.paloaltonetworks.com/blog/sase/solve-your-remote-workforce-needs-in-a-snap-with-adem/)

### [Cloud-delivered Security](https://www.paloaltonetworks.com/blog/sase/category/cloud-delivered-security/?ts=markdown), [Product Features](https://www.paloaltonetworks.com/blog/sase/category/product-features/?ts=markdown), [Use-Cases](https://www.paloaltonetworks.com/blog/sase/category/use-cases/?ts=markdown), [Zero Trust Security](https://www.paloaltonetworks.com/blog/category/zero-trust-security/?ts=markdown)

[#### Elevating SASE Availability with Multi-Cloud Redundancy on Prisma Access](https://www2.paloaltonetworks.com/blog/sase/elevating-sase-availability-with-multi-cloud-redundancy-on-prisma-access/)

### Subscribe to Sase Blogs!

Sign up to receive must-read articles, Playbooks of the Week, new feature announcements, and more.
![spinner](https://www2.paloaltonetworks.com/blog/wp-content/themes/panwblog2023/dist/images/ajax-loader.gif) Sign up  
Please enter a valid email.  
By submitting this form, you agree to our [Terms of Use](https://www.paloaltonetworks.com/legal-notices/terms-of-use?ts=markdown) and acknowledge our [Privacy Statement](https://www.paloaltonetworks.com/legal-notices/privacy?ts=markdown). Please look for a confirmation email from us. If you don't receive it in the next 10 minutes, please check your spam folder.  
This site is protected by reCAPTCHA and the Google [Privacy Policy](https://policies.google.com/privacy) and [Terms of Service](https://policies.google.com/terms) apply.  
{#footer} {#footer}

## Products and Services

* [AI-Powered Network Security Platform](https://www.paloaltonetworks.com/network-security?ts=markdown)

* [Secure AI by Design](https://www.paloaltonetworks.com/precision-ai-security/secure-ai-by-design?ts=markdown)

* [Prisma AIRS](https://www.paloaltonetworks.com/prisma/prisma-ai-runtime-security?ts=markdown)

* [AI Access Security](https://www.paloaltonetworks.com/sase/ai-access-security?ts=markdown)

* [Cloud Delivered Security Services](https://www.paloaltonetworks.com/network-security/security-subscriptions?ts=markdown)

* [Advanced Threat Prevention](https://www.paloaltonetworks.com/network-security/advanced-threat-prevention?ts=markdown)

* [Advanced URL Filtering](https://www.paloaltonetworks.com/network-security/advanced-url-filtering?ts=markdown)

* [Advanced WildFire](https://www.paloaltonetworks.com/network-security/advanced-wildfire?ts=markdown)

* [Advanced DNS Security](https://www.paloaltonetworks.com/network-security/advanced-dns-security?ts=markdown)

* [Enterprise Data Loss Prevention](https://www.paloaltonetworks.com/sase/enterprise-data-loss-prevention?ts=markdown)

* [Enterprise IoT Security](https://www.paloaltonetworks.com/network-security/enterprise-device-security?ts=markdown)

* [Medical IoT Security](https://www.paloaltonetworks.com/network-security/medical-device-security?ts=markdown)

* [Industrial OT Security](https://www.paloaltonetworks.com/network-security/medical-device-security?ts=markdown)

* [SaaS Security](https://www.paloaltonetworks.com/sase/saas-security?ts=markdown)

* [Next-Generation Firewalls](https://www.paloaltonetworks.com/network-security/next-generation-firewall?ts=markdown)

* [Hardware Firewalls](https://www.paloaltonetworks.com/network-security/hardware-firewall-innovations?ts=markdown)

* [Software Firewalls](https://www.paloaltonetworks.com/network-security/software-firewalls?ts=markdown)

* [Strata Cloud Manager](https://www.paloaltonetworks.com/network-security/strata-cloud-manager?ts=markdown)

* [SD-WAN for NGFW](https://www.paloaltonetworks.com/network-security/sd-wan-subscription?ts=markdown)

* [PAN-OS](https://www.paloaltonetworks.com/network-security/pan-os?ts=markdown)

* [Panorama](https://www.paloaltonetworks.com/network-security/panorama?ts=markdown)

* [Secure Access Service Edge](https://www.paloaltonetworks.com/sase?ts=markdown)

* [Prisma SASE](https://www.paloaltonetworks.com/sase?ts=markdown)

* [Application Acceleration](https://www.paloaltonetworks.com/sase/app-acceleration?ts=markdown)

* [Autonomous Digital Experience Management](https://www.paloaltonetworks.com/sase/adem?ts=markdown)

* [Enterprise DLP](https://www.paloaltonetworks.com/sase/enterprise-data-loss-prevention?ts=markdown)

* [Prisma Access](https://www.paloaltonetworks.com/sase/access?ts=markdown)

* [Prisma Browser](https://www.paloaltonetworks.com/sase/prisma-browser?ts=markdown)

* [Prisma SD-WAN](https://www.paloaltonetworks.com/sase/sd-wan?ts=markdown)

* [Remote Browser Isolation](https://www.paloaltonetworks.com/sase/remote-browser-isolation?ts=markdown)

* [SaaS Security](https://www.paloaltonetworks.com/sase/saas-security?ts=markdown)

* [AI-Driven Security Operations Platform](https://www.paloaltonetworks.com/cortex?ts=markdown)

* [Cloud Security](https://www.paloaltonetworks.com/cortex/cloud?ts=markdown)

* [Cortex Cloud](https://www.paloaltonetworks.com/cortex/cloud?ts=markdown)

* [Application Security](https://www.paloaltonetworks.com/cortex/cloud/application-security?ts=markdown)

* [Cloud Posture Security](https://www.paloaltonetworks.com/cortex/cloud/cloud-posture-security?ts=markdown)

* [Cloud Runtime Security](https://www.paloaltonetworks.com/cortex/cloud/runtime-security?ts=markdown)

* [Prisma Cloud](https://www.paloaltonetworks.com/prisma/cloud?ts=markdown)

* [AI-Driven SOC](https://www.paloaltonetworks.com/cortex?ts=markdown)

* [Cortex XSIAM](https://www.paloaltonetworks.com/cortex/cortex-xsiam?ts=markdown)

* [Cortex XDR](https://www.paloaltonetworks.com/cortex/cortex-xdr?ts=markdown)

* [Cortex XSOAR](https://www.paloaltonetworks.com/cortex/cortex-xsoar?ts=markdown)

* [Cortex Xpanse](https://www.paloaltonetworks.com/cortex/cortex-xpanse?ts=markdown)

* [Unit 42 Managed Detection \& Response](https://www.paloaltonetworks.com/cortex/managed-detection-and-response?ts=markdown)

* [Managed XSIAM](https://www.paloaltonetworks.com/cortex/managed-xsiam?ts=markdown)

* [Threat Intel and Incident Response Services](https://www.paloaltonetworks.com/unit42?ts=markdown)

* [Proactive Assessments](https://www.paloaltonetworks.com/unit42/assess?ts=markdown)

* [Incident Response](https://www.paloaltonetworks.com/unit42/respond?ts=markdown)

* [Transform Your Security Strategy](https://www.paloaltonetworks.com/unit42/transform?ts=markdown)

* [Discover Threat Intelligence](https://www.paloaltonetworks.com/unit42/threat-intelligence-partners?ts=markdown)

## Company

* [About Us](https://www.paloaltonetworks.com/about-us?ts=markdown)
* [Careers](https://jobs.paloaltonetworks.com/en/)
* [Contact Us](https://www.paloaltonetworks.com/company/contact-sales?ts=markdown)
* [Corporate Responsibility](https://www.paloaltonetworks.com/about-us/corporate-responsibility?ts=markdown)
* [Customers](https://www.paloaltonetworks.com/customers?ts=markdown)
* [Investor Relations](https://investors.paloaltonetworks.com/)
* [Location](https://www.paloaltonetworks.com/about-us/locations?ts=markdown)
* [Newsroom](https://www.paloaltonetworks.com/company/newsroom?ts=markdown)

## Popular Links

* [Blog](https://www.paloaltonetworks.com/blog/?ts=markdown)
* [Communities](https://www.paloaltonetworks.com/communities?ts=markdown)
* [Content Library](https://www.paloaltonetworks.com/resources?ts=markdown)
* [Cyberpedia](https://www.paloaltonetworks.com/cyberpedia?ts=markdown)
* [Event Center](https://events.paloaltonetworks.com/)
* [Manage Email Preferences](https://start.paloaltonetworks.com/preference-center)
* [Products A-Z](https://www.paloaltonetworks.com/products/products-a-z?ts=markdown)
* [Product Certifications](https://www.paloaltonetworks.com/legal-notices/trust-center/compliance?ts=markdown)
* [Report a Vulnerability](https://www.paloaltonetworks.com/security-disclosure?ts=markdown)
* [Sitemap](https://www.paloaltonetworks.com/sitemap?ts=markdown)
* [Tech Docs](https://docs.paloaltonetworks.com/)
* [Unit 42](https://unit42.paloaltonetworks.com/)
* [Do Not Sell or Share My Personal Information](https://panwedd.exterro.net/portal/dsar.htm?target=panwedd)
  ![PAN logo](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/pan-logo-dark.svg)
* [Privacy](https://www.paloaltonetworks.com/legal-notices/privacy?ts=markdown)
* [Trust Center](https://www.paloaltonetworks.com/legal-notices/trust-center?ts=markdown)
* [Terms of Use](https://www.paloaltonetworks.com/legal-notices/terms-of-use?ts=markdown)
* [Documents](https://www.paloaltonetworks.com/legal?ts=markdown)

Copyright © 2026 Palo Alto Networks. All Rights Reserved

* [![Youtube](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/social/youtube-black.svg)](https://www.youtube.com/user/paloaltonetworks)
* [![Podcast](https://www.paloaltonetworks.com/content/dam/pan/en_US/images/icons/podcast.svg)](https://www.paloaltonetworks.com/podcasts/threat-vector?ts=markdown)
* [![Facebook](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/social/facebook-black.svg)](https://www.facebook.com/PaloAltoNetworks/)
* [![LinkedIn](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/social/linkedin-black.svg)](https://www.linkedin.com/company/palo-alto-networks)
* [![Twitter](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/social/twitter-x-black.svg)](https://twitter.com/PaloAltoNtwks)
* EN  
  Select your language