RPRalph Pecayoinmasteralph.hashnode.dev·3d ago · 3 min readBuilding a Private AI Memory OS for AndroidHave you ever remembered seeing a specific piece of information on your screen but completely forgot which app it was in? The standard industry solution to this involves sending your screen data to th00
KSKaustav Sarkarinblogs.kaustavsarkar.dev·4d ago · 13 min readSigning Mesh Tokens with VaultThis blog is a part of the Zero-Trust Security on Istio Series, if you haven't read the previous article, please do, it will provide better context. The previous post traced one request's identity flo00
KSKaustav Sarkarinblogs.kaustavsarkar.dev·Jul 6 · 15 min readThe Identity Flow: From Gateway to DatabaseThis blog is a part of the Zero-Trust Security on Istio Series, if you haven't read the previous article, please do, it will provide better context. The previous post laid out the five security layers22M
UMUttam Mahatainuttammahata.hashnode.dev·Jul 5 · 6 min readLocking Down a "Public" MongoDB Atlas Cluster Without Breaking Anyone's WorkflowI run a small K3s cluster spread across a handful of VPS nodes, plus a MongoDB Atlas cluster that several backend services talk to. At some point, Atlas's Network Access list had drifted to 0.0.0.0/0 00
BBiztechpulsehubinbiztechpulsehub.hashnode.dev·Jun 24 · 2 min readThe Shadow Perimeter: Eliminating Undocumented Access Paths in Corporate Clouds The accelerating complexity of enterprise cloud architecture has created a massive layout vulnerability that sits entirely unmonitored by standard firewalls. As software groups scale dynamic cloud pla00
DHDave Hartinblog.openziti.io·Jun 23 · 6 min readBake It In: Building Agent Runtimes on Zero Trust from Day OneIf you're building an agent harness, whether it's a product you sell or an internal runtime for your organization, architectural decisions you make early can be expensive to change later. Most teams f00
DHDave Hartinblog.openziti.io·Jun 16 · 7 min readYou Can't Govern What You Can't SeeWhat does it take to answer "what did agent X do yesterday?" in your environment? For most platform teams running AI infrastructure today, it means pulling up an LLM gateway dashboard, an MCP proxy lo53LQJ
IDIgboanugo David Ugochukwuindavidigboanugo.hashnode.dev·Jun 17 · 11 min readBeyond the Login: Why API Security Now Lives in Behavior, Not AuthenticationThere's a moment that keeps recurring in breach post-mortems over the last two years, and it's never the moment anyone expects. It isn't a cracked password. It isn't a phished MFA code. It's a token —20
RRRahul Ravindraninrahulr.cc·Jun 16 · 9 min readCloudflare Tunnel Advanced Guide: Docker, Zero Trust and HA SetupIn Part 1, we built a Cloudflare Tunnel capable of exposing multiple local services through a single secure connection. We successfully created: app.example.com api.example.com grafana.example.com wi00
CC9labinc9lab.hashnode.dev·Jun 15 · 7 min readUnderstanding Zero Trust Security ModelIntroduction to Zero Trust Security Model As cyber threats become more sophisticated, traditional security models that rely on perimeter defenses are no longer sufficient. The Zero Trust Security Mode00