Network Security
In-depth guides and analysis on network security from the Safeguard engineering team.
7 articles
Zero Trust for Developer Workstations: Rethinking Endpoint Security
Developer workstations have elevated access to source code, build systems, and deployment pipelines. Zero Trust principles applied to these endpoints significantly reduce supply chain attack surface.
WireGuard for Development Infrastructure: Fast, Simple, and Secure Tunneling
WireGuard's simplicity and performance make it well-suited for securing development infrastructure. Here is how to deploy it for build servers, artifact repositories, and developer access.
VPN Security for Remote Development Teams: Beyond the Basics
Remote development teams depend on VPNs, but misconfigured VPNs create supply chain risks. Split tunneling, credential management, and endpoint security all affect build pipeline integrity.
Network Segmentation for Development Environments: Isolating the Build Pipeline
Development environments are often the weakest link in network security. Proper segmentation isolates build systems from production and prevents lateral movement from compromised developer machines.
Software-Defined Perimeters for Supply Chain Security
Software-Defined Perimeters can isolate build systems, artifact repositories, and deployment pipelines from unauthorized access. Here is how SDP applies to supply chain security.
BGP Hijacking and Software Distribution Security
BGP hijacking lets attackers reroute internet traffic at the network level, silently intercepting software downloads and updates. This is one of the most powerful yet overlooked supply chain attack vectors.
DNS Hijacking and Its Supply Chain Implications
DNS hijacking can redirect software updates, package downloads, and API calls to attacker-controlled servers. Here's how this underrated attack vector threatens your entire software supply chain.