_CORE
Services
AI & Agentic Systems Core Information Systems Cloud & Platform Engineering Data Platform & Integration Security & Compliance QA, Testing & Observability IoT, Automation & Robotics Mobile & Digital
Industries
Banking & Finance Insurance Public Administration Defense & Security Healthcare Energy & Utilities Telco & Media Manufacturing Logistics & E-commerce Retail & Loyalty
References Technologies
Lab
Blog Know-how Tools
About Collaboration Careers
Let's talk
Home / Know-how / Security
KATEGORIE

Security

24 articles

intermediate17. 12. 2025

Encryption in Transit — šifrování přenosu dat

TLS, mTLS, VPN, WireGuard. Ochrana dat při přenosu.
intermediate23. 09. 2025

Nmap tutorial — network scanning

A complete guide to Nmap. Port scanning, service detection, scripting engine.
intermediate21. 08. 2025

Linkerd — Lightweight Service Mesh

Linkerd architektura, zero-config mTLS, traffic split a observabilita.
intermediate19. 08. 2025

Network Troubleshooting

Systematický přístup k diagnostice síťových problémů.
intermediate15. 08. 2025

Let's Encrypt tutorial — automatické HTTPS certifikáty

Nastavení Let's Encrypt s certbot. Automatická obnova, wildcard certifikáty.
intermediate07. 08. 2025

The Complete Guide to Nginx

Nginx as web server, reverse proxy, load balancer. Complete configuration.
advanced23. 06. 2025

Service Mesh vysvětlení

Sidecar proxy, traffic management, observability a security.
advanced12. 02. 2025

Istio tutorial

Istio na Kubernetes — traffic management, mTLS, observability.
advanced08. 12. 2024

Zero Trust Microsegmentation — Identity as the New Perimeter

Microsegmentation in zero trust architecture. Service mesh identity, mTLS, SPIFFE/SPIRE and policy-based access...
intermediate03. 08. 2024

SSL/TLS checklist

SSL/TLS checklist — certifikáty, protokoly, HSTS, certificate transparency.
intermediate22. 07. 2024

OAuth 2.0 — A Complete Guide to Flows

Authorization Code, PKCE, Client Credentials. Kdy který použít.
advanced25. 05. 2024

Zero Trust Networking in Cloud

Zero Trust principles, identity-based access, micro-segmentation and BeyondCorp.
intermediate03. 12. 2023

CSRF ochrana — Cross-Site Request Forgery

Jak funguje CSRF útok a jak se bránit. Token, SameSite cookies, Double Submit.
intermediate02. 05. 2023

SSL/TLS Configuration — Secure HTTPS

Proper TLS 1.3 configuration, cipher suites, certificates.
intermediate15. 10. 2022

Content Security Policy (CSP) — A Practical Guide

CSP header pro ochranu proti XSS. Direktivy, nonce, reporting.
advanced03. 07. 2022

Zero Trust Architecture — Never Trust, Always Verify

Zero trust principles, implementation, micro-segmentation, identity-based access.
intermediate21. 11. 2021

HTTP/2 a HTTP/3

Multiplexing v HTTP/2, QUIC v HTTP/3 a jak nasadit.
intermediate04. 06. 2021

WAF konfigurace — Web Application Firewall

ModSecurity, AWS WAF, Cloudflare WAF. Pravidla a false positives.
intermediate10. 10. 2019

Security audit checklist

Kompletní security audit checklist pro webové application a infrastrukturu.
intermediate01. 08. 2019

SAST nástroje — statická analýza kódu

Semgrep, SonarQube, CodeQL. Jak najít zranitelnosti v kódu bez spuštění.
advanced06. 01. 2019

Incident Response Plan — jak reagovat na bezpečnostní incident

Postup při bezpečnostním incidentu. Preparation, detection, containment, recovery.
intermediate07. 09. 2018

Cloudflare setup

DNS, proxy, SSL, Page Rules a DDoS ochrana.
advanced12. 05. 2018

mTLS v praxi

Vzájemná TLS autentizace, certifikáty a nasazení.
advanced27. 12. 2017

mTLS — Mutual TLS vysvětlení

Co je mutual TLS, kdy ho použít a jak nakonfigurovat.