Security Resources

Development of System Configuration Management: Performance Considerations

Integrated caching in Consul greatly improved SCM config delivery speed, using goroutines and checksums to reduce load, though deployment latency initially increased.

September 17, 2025

by Georgii Kashintsev

· 1,821 Views · 1 Like

Protecting Non-Human Identities: Why Workload MFA and Dynamic Identity Matter Now

Secrets can’t secure non-human identities at scale. Modern workloads require verifiable identity and contextual trust to operate safely.

September 16, 2025

by Surya Avirneni

· 3,747 Views

How AI and Machine Learning Are Shaping the Fight Against Ransomware

This article examines how artificial intelligence and machine learning are revolutionizing the fight against ransomware.

September 15, 2025

by Daniel Akomolafe

· 1,714 Views · 3 Likes

Enhancing AI Privacy: Federated Learning and Differential Privacy in Machine Learning

The article explores Federated Learning and Differential Privacy as key techniques for privacy-preserving machine learning.

September 12, 2025

by Shaurya Jain

· 3,078 Views · 2 Likes

Security Concerns in Open GPTs: Emerging Threats, Vulnerabilities, and Mitigation Strategies

In this article, learn about real-world breaches, risks, and advanced security strategies to safeguard Open GPT deployments against evolving AI threats.

September 12, 2025

by Vijay Oggu

· 1,955 Views · 1 Like

Securing LLM Applications: Beyond the New OWASP LLM Top 10

The new OWASP LLM Top 10 highlights vulnerabilities unique to LLMs. However, operationalizing LLM security means weaving safeguards beyond just referencing a checklist.

September 11, 2025

by Abhishek Goswami

· 2,948 Views · 2 Likes

OWASP Top 10 Non-Human Identity Risks for 2025: What You Need to Know

Raising awareness on NHI security is good, but what exactly do you tell your teams? OWASP has your back with the newest research into NHI risks.

September 11, 2025

by Dwayne McDaniel

· 1,649 Views · 1 Like

A Practical Guide to API Threat Analytics in Cloud Platforms

APIs are prime attack targets, so basic security isn’t enough. Use threat analytics to filter logs, detect suspicious activity, and respond fast.

September 11, 2025

by Pragya Keshap

· 1,954 Views · 4 Likes

Blockchain-Based Authentication: The Future of Secure Identity Verification

This article highlights privacy, tamper-proof security, and seamless authentication, while addressing challenges like scalability and adoption.

September 9, 2025

by Rajesh Purushothaman

· 1,972 Views · 2 Likes

Probably Secure: A Look at the Security Concerns of Deterministic vs Probabilistic Systems

Learn why deterministic security remains essential in an AI-driven world and how to combine probability and proof for safe, auditable development with LLMs.

September 9, 2025

by Dwayne McDaniel

· 1,637 Views · 1 Like

Secure Your Spring Boot Apps Using Keycloak and OIDC

This blog explores integrating Spring Security with Keycloak using OpenID Connect. It also provides examples and unit tests.

September 9, 2025

by Gunter Rotsaert

CORE

· 3,325 Views · 4 Likes

Cloud Automation Excellence: Terraform, Ansible, and Nomad for Enterprise Architecture

Enterprise cloud architecture demands sophisticated orchestration of infrastructure, configuration, and workload management across diverse computing platforms.

September 9, 2025

by Vidyasagar (Sarath Chandra) Machupalli FBCS

CORE

· 5,395 Views · 3 Likes

Toward Explainable AI (Part 8): Bridging Theory and Practice—SHAP: Powerful, But Can We Trust It?

Explainable AI bridges the gap between complex models and real-world accountability, helping teams build trust, ensure compliance, and make smarter decisions.

September 9, 2025

by Frederic Jacquet

CORE

· 1,431 Views · 2 Likes

The Role of Data Governance in Data Strategy: Part 4

Explore the critical role of data retention in governance: reduce costs, mitigate legal and cybersecurity risks, and ensure compliance with clear policies.

September 5, 2025

by Satish Gaddipati

· 2,213 Views · 2 Likes

CI/CD in the Age of Supply Chain Attacks: How to Secure Every Commit

Supply chain attacks target CI/CD pipelines with privileged access and automation, exploiting trusted environments where security is often overlooked.

September 4, 2025

by Igboanugo David Ugochukwu

CORE

· 4,316 Views · 2 Likes

Container Security Essentials: From Images to Runtime Protection

Secure containers with hardened images, secrets management, runtime monitoring, and automated policies. We will also look at some of the cool tools Docker provides.

September 3, 2025

by Siri Varma Vegiraju

CORE

· 3,592 Views · 2 Likes

Why Zero Trust Is Not a Product but a Strategy You Can’t Ignore in 2025

"We recently purchased a Zero Trust solution." A statement like that makes even the most seasoned security experts cringe. There is no such thing as buying Zero Trust.

September 3, 2025

by Olaitan Bada

· 1,463 Views · 1 Like

Stop Leaking Secrets: The Hidden Danger in Test Automation and How Vault Can Fix It

Hardcoded secrets in test automation can silently expose your systems. Let us see how to eliminate that risk using Vault for secure, dynamic credential management.

September 2, 2025

by Pradeepkumar Palanisamy

· 3,511 Views · 3 Likes

Technical Deep Dive: Scaling GenAI-Enhanced SBOM Analysis from Trivy Fix to Enterprise DevSecOps

Discover how Trivy PR #9224 enables complete SBOM dependency mapping, powering GenAI-driven DevSecOps automation and millions in enterprise cost savings.

September 2, 2025

by Ravi Sastry Kadali

· 2,614 Views · 1 Like

Prototype for a Java Database Application With REST and Security

Prototype for a Java database application with REST and security using Spring Boot and containers for testing, using Keycloak for security and PostgreSQL for persistence.

September 2, 2025

by George Pod

· 4,172 Views · 5 Likes

The Latest Security Topics