Microsoft claimed this week that its Universal Print service is part of its "zero-trust" vision for networks.
The idea behind that claim is that Azure Active Directory is used to validate printers managed under the Universal Print service. Moreover, communications happen via Transport Layer Security (TLS) 1.2 connections, protecting against snooping. Finally, the client apps used can't extend their permission scopes, so no added permissions can be requested should the apps get breached.
The zero-trust claims for the Universal Print service appear to be new marketing information. Previously, Microsoft just stressed Universal Print's management perks for IT pros, such as not having to maintain print servers or update printer drivers. Universal Print is based on the Internet Print Protocol (IPP) standard from the Printer Working Group, which means that no device-specific print drivers need to be installed, updated or maintained when using the service. more here