16 posts in category security

Kubernetes logo

K8s & OpenShift: Security

RBAC, Pod Security Admission, NetworkPolicy, and supply-chain controls — the security practices every Kubernetes production workload needs. Part 5 of 7.

K8s & OpenShift: Security
Diagram: application attack surface layered from untrusted input through libraries/dependencies to classical vulnerabilities and AI-era extensions like prompt injection

What is Application Security

Application security: SQL Injection, Log4Shell, OWASP Top 10, and Input Validation — attacks that affect confidentiality and integrity, not availability.

What is Application Security
Diagram: a botnet controlled via command-and-control launching a DDoS attack over the internet against load balancers and pods

What is a (D)DoS - technical

Technical (D)DoS attack vectors: Layer 3/4 floods, BGP hijacking, Layer 7 application DDoS, and operational resilience strategies to keep services available.

What is a (D)DoS - technical
Diagram: a botnet controlled via command-and-control launching a DDoS attack over the internet against load balancers and pods

What is a (D)DoS

Non-technical (D)DoS overview: how denial-of-service attacks operate at the Business, Social, and Informational level, and what protection looks like at each.

What is a (D)DoS
Diagram: a botnet controlled via command-and-control launching a DDoS attack over the internet against load balancers and pods

(D)DoS and Application Security: The Complete Guide

Index for a three-part (D)DoS and Application Security series: business, social, and technical denial-of-service, plus SQL Injection, Log4Shell, and OWASP risks.

(D)DoS and Application Security: The Complete Guide
Diagram: WORM (write-once-read-many) coverage for log archiving security and compliance

Elasticsearch vs. OpenSearch vs. Loki vs. Quickwit vs. ClickHouse: Security & Compliance

Encryption, RBAC, and WORM compliance for log archives: Elasticsearch, OpenSearch, Loki, Quickwit, ClickHouse. S3 Object Lock, audit logging. Part 3 of 5.

Elasticsearch vs. OpenSearch vs. Loki vs. Quickwit vs. ClickHouse: Security & Compliance