network-security
Safeguard articles tagged "network-security" — guides, analysis, and best practices for software supply chain and application security.
32 articles
What is a VPN
A plain-English breakdown of what a VPN is, how it encrypts traffic, and why VPN gateways have become one of the most exploited attack surfaces in enterprise networks.
What is an Intrusion Detection System (IDS)
An IDS detects malicious network or host activity after it happens. Learn what an IDS is, how it differs from an IPS, and why supply chain attacks need more.
What is an Intrusion Prevention System (IPS)
An IPS blocks malicious traffic inline in real time, but it can't stop supply chain attacks hidden inside trusted code and dependencies.
How to implement zero trust network architecture
A practical, step-by-step guide to implement zero trust network architecture: identity, microsegmentation, posture checks, policy-as-code, and verification.
How to set up a bastion host for secure SSH access
A step-by-step guide to set up bastion host SSH access on AWS, with ProxyJump configs, security group rules, and a verification checklist for hardened jump box access.
How to configure Nessus for vulnerability scanning
A step-by-step guide to installing Nessus, building scan policies, defining safe targets, and validating results — plus where supply chain risk starts beyond the network scan.
How to configure DNSSEC
A practical, command-by-command guide to configure DNSSEC on managed and self-hosted DNS, verify the chain of trust, and prevent DNS spoofing across your supply chain.
Hardening Oracle Kubernetes Engine (OKE) clusters
A practical, command-by-command guide to OKE security best practices: locking down the API endpoint, network security lists, pod security policies, IAM, and image signing.
Juniper Router CVE-2025-21589: Authentication Bypass That Puts Network Perimeters at Risk
A critical authentication bypass in Juniper's Session Smart Router lets remote attackers hijack admin sessions. Here's what happened, why it matters, and what to do.
What Is TLS? Transport Layer Security Explained
TLS is the protocol that encrypts data in transit across the internet, turning the padlock in your browser into real protection against eavesdropping and tampering.
Tools in Cyber Security: A Starter Map by Category
The tools in cyber security span network defense, application security, identity, and data protection, and the fastest way to get oriented is a map by category rather than a vendor list.
Migrating VPN to Zero Trust: Supply Chain
A phased playbook for retiring corporate VPN concentrators in favor of zero trust network access, with specific guidance for protecting software supply chain pipelines.