Loading...

Tag trends are in beta. Feedback? Thoughts? Email me at [email protected]

Blog on 'Designing a Zero Trust Architecture: 20 open-source tools to secure every layer

Patterns of failure in modern authorization

CRDTs and collaborative playgrounds

What's so bad about sidecars, anyway?

Cerbos Hub: one hub for all authorization tasks (per-tenant policies, programmatic policy management, NHI & MCP authorization, full audit trails)

A guide to fine-grained permissions in MCP servers

Techniques for handling failure scenarios in microservice architectures

Practices that set great software architects apart

How to authenticate machine identities: mTLS, token authentication, SPIFFE, and more

Designing a Zero Trust architecture with open-source tools

11 best open source tools for Software Architects

Data authorization

Securing non-human identities

Authorization at the edge

Authorization game — match incoming requests to permission policies (my weekend project)

Certifications for software architects

Statements about stateless

RAG-based AI agents authorization with LangGraph and Pinecone

Implementing API threat protection

Organizational + technical challenges when migrating from a monolith to microservices, and how Amazon built a microservices culture

Challenges of optimizing a microservices architecture for scalability and performance & how to navigate them (service communication and latency, data management and consistency, scalability…

Standardizing authorization, non-human identities & delegated access, AI for audit log analysis and other AuthZ trends we see in 2025

How to build an authorization system for your RAG applications with LangChain + Chroma DB

CRDTs and Collaborative Playground

Potential vulnerabilities of a microservices architecture and how to safeguard against them (authentication + authorization, secure communication, API Gateway, Zero Trust)

Testing (unit, contract, integration, end-to-end) and deployment (blue-green, canary, rolling update, serverless) strategies to maintain the quality and stability of microservices

Zero trust authorization

The value of monitoring and observability in microservices & associated challenges (interaction of data silos, scalability, lack of standard tools)

What's so bad about sidecars, anyway?

RBAC in JavaScript

More →