Safeguard
Tag

network-security

Safeguard articles tagged "network-security" — guides, analysis, and best practices for software supply chain and application security.

32 articles

Best Practices

What is a VPN

A plain-English breakdown of what a VPN is, how it encrypts traffic, and why VPN gateways have become one of the most exploited attack surfaces in enterprise networks.

Feb 17, 20267 min read
Best Practices

What is an Intrusion Detection System (IDS)

An IDS detects malicious network or host activity after it happens. Learn what an IDS is, how it differs from an IPS, and why supply chain attacks need more.

Feb 16, 20267 min read
Best Practices

What is an Intrusion Prevention System (IPS)

An IPS blocks malicious traffic inline in real time, but it can't stop supply chain attacks hidden inside trusted code and dependencies.

Feb 16, 20267 min read
Identity Security

How to implement zero trust network architecture

A practical, step-by-step guide to implement zero trust network architecture: identity, microsegmentation, posture checks, policy-as-code, and verification.

Feb 14, 20267 min read
Industry Analysis

How to set up a bastion host for secure SSH access

A step-by-step guide to set up bastion host SSH access on AWS, with ProxyJump configs, security group rules, and a verification checklist for hardened jump box access.

Feb 12, 20267 min read
Vulnerability Management

How to configure Nessus for vulnerability scanning

A step-by-step guide to installing Nessus, building scan policies, defining safe targets, and validating results — plus where supply chain risk starts beyond the network scan.

Feb 11, 20267 min read
Industry Analysis

How to configure DNSSEC

A practical, command-by-command guide to configure DNSSEC on managed and self-hosted DNS, verify the chain of trust, and prevent DNS spoofing across your supply chain.

Feb 8, 20267 min read
Container Security

Hardening Oracle Kubernetes Engine (OKE) clusters

A practical, command-by-command guide to OKE security best practices: locking down the API endpoint, network security lists, pod security policies, IAM, and image signing.

Jan 8, 20268 min read
Vulnerability Analysis

Juniper Router CVE-2025-21589: Authentication Bypass That Puts Network Perimeters at Risk

A critical authentication bypass in Juniper's Session Smart Router lets remote attackers hijack admin sessions. Here's what happened, why it matters, and what to do.

Feb 20, 20255 min read
Concepts

What Is TLS? Transport Layer Security Explained

TLS is the protocol that encrypts data in transit across the internet, turning the padlock in your browser into real protection against eavesdropping and tampering.

Jan 28, 20256 min read
SecOps

Tools in Cyber Security: A Starter Map by Category

The tools in cyber security span network defense, application security, identity, and data protection, and the fastest way to get oriented is a map by category rather than a vendor list.

Jan 22, 20255 min read
Best Practices

Migrating VPN to Zero Trust: Supply Chain

A phased playbook for retiring corporate VPN concentrators in favor of zero trust network access, with specific guidance for protecting software supply chain pipelines.

Nov 18, 20247 min read
network-security (Page 2) — Safeguard Blog