network-security
Safeguard articles tagged "network-security" — guides, analysis, and best practices for software supply chain and application security.
32 articles
What is Egress Filtering in CI
Egress filtering in CI restricts where build jobs can send traffic, so a compromised dependency can't exfiltrate your secrets. Here's how to roll it out without breaking builds.
Microsegmentation for Software Supply Chain Security
Microsegmentation limits lateral movement after a breach. Applied to software supply chains, it contains the blast radius when a dependency, build tool, or vendor is compromised.
WireGuard for Development Infrastructure: Fast, Simple, and Secure Tunneling
WireGuard's simplicity and performance make it well-suited for securing development infrastructure. Here is how to deploy it for build servers, artifact repositories, and developer access.
VPN Security for Remote Development Teams: Beyond the Basics
Remote development teams depend on VPNs, but misconfigured VPNs create supply chain risks. Split tunneling, credential management, and endpoint security all affect build pipeline integrity.
Cilium Network Security in Kubernetes: Beyond Basic Network Policies
Cilium uses eBPF to provide network security that standard Kubernetes NetworkPolicies cannot match. Here is what it adds and how to configure it.
Software-Defined Perimeters for Supply Chain Security
Software-Defined Perimeters can isolate build systems, artifact repositories, and deployment pipelines from unauthorized access. Here is how SDP applies to supply chain security.
BGP Hijacking and Software Distribution Security
BGP hijacking lets attackers reroute internet traffic at the network level, silently intercepting software downloads and updates. This is one of the most powerful yet overlooked supply chain attack vectors.
DNS Hijacking and Its Supply Chain Implications
DNS hijacking can redirect software updates, package downloads, and API calls to attacker-controlled servers. Here's how this underrated attack vector threatens your entire software supply chain.