Access Control Models
Frameworks for controlling who can access resources, including DAC, MAC, RBAC, and ABAC.
Authorization
Authentication and Authorization (AuthN/AuthZ)
The distinction between verifying identity (authentication) and granting access permissions (authorization), including the AAA model.
Keycloak - Open-Source Identity and Access Management
Keycloak is an open-source identity and access management solution providing single sign-on, user federation, and identity brokering for …
OAuth
OAuth is an open standard for delegated authorization, originating from Blaine Cook and Chris Messina's work at Twitter in 2006-2007 and …
Zero Trust Architecture
What zero trust means, how it replaces perimeter-based security, and why AI model serving and data access require zero trust principles.
Zero Trust for AI Model Serving
Applying zero trust architecture to AI systems: securing inference endpoints, model artifact access, training data, and service-to-service …
Amazon Cognito - User Authentication for AI Apps
Amazon Cognito User Pools and Identity Pools: JWT token structure and expiry, MFA options, SAML/OIDC federation, Lambda triggers, rate …
Security Fundamentals
Authentication, authorization, encryption, the OWASP Top 10, and the zero trust model. The baseline security practices that every production …