Safeguard
Tag

tls

Safeguard articles tagged "tls" — guides, analysis, and best practices for software supply chain and application security.

25 articles

Secure Development

TLS Library Comparison: OpenSSL vs. LibreSSL vs. BoringSSL

Three forks of the same codebase, three different security philosophies. Here is how to choose the right TLS library for your project.

Sep 20, 20255 min read
Concepts

What Is a Certificate Authority? The Root of Digital Trust

A certificate authority is the trusted third party that vouches for who owns a public key. It is the reason your browser can trust a website it has never seen before.

Mar 18, 20256 min read
Concepts

What Is Mutual TLS (mTLS)? Two-Way Authentication Explained

Mutual TLS makes both sides of a connection prove their identity with certificates, not just the server. It is the backbone of zero-trust communication between services.

Feb 11, 20255 min read
Concepts

What Is TLS? Transport Layer Security Explained

TLS is the protocol that encrypts data in transit across the internet, turning the padlock in your browser into real protection against eavesdropping and tampering.

Jan 28, 20256 min read
Infrastructure Security

Envoy Proxy Security Hardening for Production Deployments

Envoy powers service meshes and API gateways across the industry. Its default configuration prioritizes connectivity over security. Here is how to fix that.

Apr 12, 20244 min read
Security Concepts

Symmetric vs Asymmetric Encryption, Explained

What makes an encryption algorithm symmetric is a single shared key for both encryption and decryption; asymmetric algorithms use a mathematically linked public/private key pair instead — and the difference decides which one you should reach for.

Mar 19, 20246 min read
Application Security

Certificate Pinning for Software Updates: When and How to Pin

Certificate pinning can protect your update channel from MITM attacks, but it introduces operational complexity. Here is when pinning makes sense and how to do it safely.

Mar 8, 20244 min read
Kubernetes Security

Kubernetes Ingress Security Configuration: Getting It Right

Ingress controllers are the front door to your Kubernetes cluster. Misconfigurations here expose everything behind them.

Aug 12, 20234 min read
Application Security

TLS Library Comparison: OpenSSL vs BoringSSL vs LibreSSL vs rustls

Your TLS library choice has massive security implications. Here is an honest comparison of the major options and what each trade-off means.

May 25, 20235 min read
Infrastructure Security

NGINX Security Configuration Guide for Production Deployments

NGINX powers a third of the internet. Its default configuration is optimized for getting started, not for production security. Here is the gap.

Jul 12, 20224 min read
Application Security

TLS Configuration Security Audit: What to Check and How

A misconfigured TLS setup can be worse than no encryption at all because it creates false confidence. Here is how to audit your TLS configuration properly.

Jun 8, 20224 min read
PKI Security

Certificate Authority Compromise and Supply Chain Risks

A compromised certificate authority can undermine TLS trust for your entire software supply chain. Understanding CA risks is essential for defending package integrity and secure distribution.

Mar 12, 20227 min read
tls (Page 2) — Safeguard Blog