Cybersecurity learned a hard lesson over the last two decades: trust based on location fails. Being inside the network perimeter proved nothing about whether traffic was legitimate, so the industry moved to Zero Trust, verify explicitly, every time, regardless of where the request comes from.
Physical building infrastructure still runs on perimeter trust. A technician who made it past the lobby is presumed legitimate. A safety vest and a ladder function as credentials. A work order number nobody can verify opens doors that protect every tenant's connectivity and the building's life safety systems.
The translation
Zero Trust Infrastructure Governance applies the same principle to physical systems: no vendor, carrier, technician, or contractor is assumed authorized simply because they arrived onsite. Every request for access or work must explicitly answer six questions:
- Who is performing the work? Named individuals, verified against the company dispatching them, not "someone from the phone company."
- Why is the work being performed? A business purpose traceable to a tenant, an owner project, or a documented obligation.
- What systems will be impacted? The specific cables, equipment, pathways, and, critically, anything shared or life-safety-related in the blast radius.
- Where will they go? Defined spaces, not building-wide roaming. A survey of IDF-3 is not permission to visit the roof.
- When will the work occur? Scheduled windows that allow verification, escort, and tenant notice where appropriate.
- How will it be verified? Documentation closing the loop: what was actually done, by whom, with photo evidence, reconciled against the approved scope.
What changes in practice
Verification moves to the front. Identity is checked at arrival, against the request, every visit, including familiar faces, because "the regular guy" is exactly who social engineering imitates. Access becomes scoped and time-boxed. Work becomes change-controlled. And the building accumulates something it never had: a trustworthy record of its own infrastructure history.
What it costs, and doesn't
Zero Trust governance is a discipline, not a technology purchase. The marginal cost of verifying a technician is minutes; the cost of the alternative arrives as outages, disputes, degraded life safety coverage, and un-provable due diligence. Legitimate vendors adapt quickly, most already operate under equivalent rules in data centers and hospitals. The parties inconvenienced by explicit verification are precisely the parties you want inconvenienced.