Zero Trust
Zero Trust is a security model built on the principle 'never trust, always verify': no user, device, or network location is trusted by default, even inside a traditional network perimeter. Every access request is continuously authenticated, authorized, and encrypted based on identity and context, rather than relying…
20 resources across 2 libraries
Glossary Terms(15)
OWASP
OWASP (Open Worldwide Application Security Project) is a nonprofit foundation dedicated to improving software security through open, community-driven resources…
Zero Trust
Zero Trust is a security model built on the principle 'never trust, always verify': no user, device, or network location is trusted by default, even inside a t…
VPN
A VPN (Virtual Private Network) creates an encrypted tunnel between a device and a remote network or gateway over the public internet, making traffic appear as…
SSL
SSL (Secure Sockets Layer) is the original cryptographic protocol for encrypting communication between a client and a server over a network, developed by Netsc…
TLS
TLS (Transport Layer Security) is the standard cryptographic protocol for securing data in transit over a network, succeeding SSL. It provides encryption, data…
Authentication
Authentication is the process of verifying that a user, device, or system is who or what it claims to be, typically before granting access to a resource. It is…
Duo Security
Duo Security is a cloud-based access security platform, owned by Cisco, best known for its multi-factor authentication (MFA) product that verifies user identit…
Multi-Factor Authentication (MFA)
Multi-Factor Authentication (MFA) is a security method that requires users to verify their identity using two or more independent factors — typically something…
Virtual Private Network (VPN)
A Virtual Private Network (VPN) creates an encrypted tunnel between a device and a remote network or server, protecting data in transit and allowing the device…
DDoS Attack
A Distributed Denial-of-Service (DDoS) attack is an attempt to overwhelm a server, service, or network with a flood of traffic from many compromised sources at…
Passkeys
Passkeys are a passwordless authentication method based on public-key cryptography that lets users sign in to websites and apps using a device-bound credential…
WebAuthn
WebAuthn (Web Authentication API) is a W3C standard that defines a browser API for public-key-based authentication, allowing websites to register and authentic…
Supply Chain Security
Supply chain security, in software, is the discipline of securing every stage of how code, dependencies, and build artifacts flow from source to production — i…
CNAPP
CNAPP (Cloud-Native Application Protection Platform) is an integrated category of security tooling that consolidates cloud posture management, workload protect…
Confidential Computing
Confidential computing is a security technique that protects data while it is actively being processed in memory by running computations inside a hardware-base…
Interview Questions(5)
What is Zero Trust Networking?
Zero Trust Networking is a security model built on the principle "never trust, always verify" — no device, user, or service is implicitly trusted just because…
What is a Kubernetes NetworkPolicy?
A Kubernetes NetworkPolicy is a namespaced resource that controls which pods may communicate with which other pods (and external endpoints) by defining ingress…
What is mTLS and Why Use It Between Services?
Mutual TLS (mTLS) is an extension of standard TLS where both the client and the server present X.509 certificates and verify each other’s identity during the h…
What Is Network Segmentation and Why Does It Matter?
Network segmentation is the practice of dividing a network into smaller, isolated zones with controlled traffic between them, so that a compromise in one zone…
Kubernetes NetworkPolicies vs Cloud Security Groups: What is the Difference?
Kubernetes NetworkPolicies control pod-to-pod traffic inside a cluster by matching pod labels and namespaces at the CNI plugin layer, while cloud security grou…