5 posts
Great system design combines theory with practical experience from real-world implementations. In this piece, we'll dive into secure multi-tenant saas (auth, isolation, limits), revealing the trade-of...
For over a decade, the traditional security paradigm relied on the "castle-and-moat" strategy: a hardened network perimeter protecting internal assets. However, as Google discovered following the "Ope...
In the modern cloud landscape, the concept of a "perimeter" has shifted from the network to the identity. As organizations scale from a single AWS account to hundreds or thousands under AWS Organizati...
In the traditional cloud security model, the standard mechanism for authenticating external workloads to Google Cloud Platform (GCP) was the service account key. These long-lived JSON files were a per...
Identity and Access Management (IAM) is the foundational security layer of the AWS ecosystem. In a cloud-native environment, the traditional network perimeter has effectively dissolved, replaced by id...