📰 Dev.to · kt

CA/Browser Forum SC-081 mandates a phased reduction of certificate validity to 47 days by 2029. This article dives deep into the structural flaws of revocation

Building an OPA plugin that implements the AuthZEN Authorization API 1.0. How the OPA community discussion led to a plugin approach, and the design decisions be

A deep dive into the Google Zanzibar paper — covering Relation Tuples, the New Enemy problem, Zookies, the Leopard index, and system architecture. With notes on

Starting with the RBAC role explosion problem, comparing it with ABAC and ReBAC, and exploring practical policy examples from products like Cedar, OpenFGA, and

A thorough breakdown of IETF draft-ietf-wimse-arch-07. From core concepts to cross-domain scenarios and security considerations, this article walks through the

I built a fully automated, interactive guest book using Issue Forms and GitHub Actions, where visitors can leave a message in just 10 seconds.

A comprehensive guide to Identity Chaining (draft-ietf-oauth-identity-chaining-08). Learn how to safely propagate identity and authorization information across

More than just entropy calculation—I built a Go CLI tool to visualize how much it would cost if an offline attack were launched using modern hardware like an RT

A comprehensive, illustrated deep dive into RFC 8693 (Token Exchange), the OAuth 2.0 standard for exchanging one token for another, exploring the crucial differ

While Gatekeeper is the standard for Kubernetes policy control, its predecessor, the 'OPA + kube-mgmt' setup, remains highly relevant as a versatile policy dist

The common belief is that Go maps don't return memory after deletion. I verified this myth with actual measurements in Go 1.25. The result: Alloc decreased by 9

'The GC is running, but memory usage isn't dropping.' The cause is often heap fragmentation. This article details the design of Go's memory allocator, the mecha

In modern complex systems, calculating every variable is impossible. This is a catalog of powerful rules of thumb (heuristics) for engineers to make split-secon

The common wisdom that 'abstraction is slow' does not apply in the world of Rust and C++. However, not all abstractions are free. We visualize the difference be

Do you think Traits are just Interfaces? You're half right, but you're missing half of Rust's power. Let's fully understand the difference between Static Dispat

Cloudflare ditched NGINX and rewrote it in Rust to create 'Pingora'. This article dissects the source code to explain the 'Two-Stage Connection Pool' mechanism,

A stylish, interactive CLI to bookmark and clone your favorite Git repositories.

An open-source desktop tool to automatically monitor and visualize your internet connection speed over time.

I built a visual timeline exploring the origins of major tech companies, web services, and even the dark web. Built with Vue 3 & Vite.