Security
Security
Architecture, hardening and vendor-neutral security fundamentals.
Latest articles
Security
Β·10 min read
Zero Trust in practice: what NIST SP 800-207 actually requires from your network
NIST SP 800-207 is the official Zero Trust document. A direct translation for network and security engineers: principles, components, and how to apply it without falling for vendor marketing.
Read article βSecurity
Β·7 min read
MITRE ATT&CK for network engineers: turning the matrix into controls
Map ATT&CK tactics to network controls: segmentation, NetFlow, DNS sinkhole, deception and SOC playbooks.
Read article βSecurity
Β·8 min read
Microsegmentation: the practical guide that doesn't break apps
From workload tagging to enforcement: identity-based policy, east-west firewalls and how to roll out without downtime.
Read article βSecurity
Β·7 min read
TLS 1.3 and Encrypted SNI: what changes for network security
How TLS 1.3, ESNI/ECH and DoH/DoT impact NGFW visibility, decryption strategy and DNS security.
Read article βSecurity
Β·7 min read
IPv6 security best practices: dual-stack and IPv6-only without surprises
IPv6-specific threats and controls: RA guard, DHCPv6 guard, ND inspection, prefix delegation and ACLs.
Read article β