Skip to Content
All memories

#DevSecOps

A set of research notes and deep dives focused on correctness, security, and operational evidence.

View tag listing

Best starting points

  1. Multi-Region Design: Failover That You Can Actually Test

    June 1, 2022 · 4 min

    Threat-model-first analysis (June 2022): Multi-Region Design: Failover That You Can Actually Test.

  2. Kubernetes Hardening: RBAC, NetworkPolicy, and Pod Security

    May 1, 2022 · 4 min

    Threat-model-first analysis (May 2022): Kubernetes Hardening: RBAC, NetworkPolicy, and Pod Security.

  3. Post-Quantum Readiness at the Edge: Constraints and Migration

    December 1, 2021 · 4 min

    Engineering notebook entry (December 2021): Post-Quantum Readiness at the Edge: Constraints and Migration.

  4. Anomaly Detection: What 'Baseline' Means in Industrial Systems

    November 1, 2021 · 4 min

    Threat-model-first analysis (November 2021): Anomaly Detection: What 'Baseline' Means in Industrial Systems.

  5. Safety-Critical vs Security-Critical: Integrating Two Worlds

    August 1, 2021 · 4 min

    Correctness-focused deep dive (August 2021): Safety-Critical vs Security-Critical: Integrating Two Worlds.

Roadmap

  • Start with assumptions and invariants
  • Enumerate failure modes and attack surfaces
  • Define what to monitor and how to roll back

Browse topics