Abstract Algorithms

security

5 articles across 5 sub-topics

Service Mesh Pattern: Control Plane, Data Plane, and Zero-Trust Traffic

TLDR: A service mesh intercepts all service-to-service traffic via injected Envoy sidecar proxies, letting a platform team enforce mTLS, retries, timeouts, and circuit breaking centrally — without changing application code. Reach for it when cross-te...

Mar 13, 2026•14 min read

Circuit Breaker(1)

System Design Advanced: Security, Rate Limiting, and Reliability

TLDR: Three reliability tools every backend system needs: Rate Limiting prevents API spam and DDoS, Circuit Breakers stop cascading failures when downstream services degrade, and Bulkheads isolate failure blast radius. Knowing when and how to combine...

Mar 9, 2026•14 min read

Cryptography(1)

X.509 Certificates: A Deep Dive into How They Work

TLDR: An X.509 Certificate is a digital document that binds a Public Key to an Identity (e.g., google.com). It is digitally signed by a trusted Certificate Authority (CA). It prevents attackers from impersonating websites via man-in-the-middle attack...

Mar 9, 2026•15 min read

Encryption(1)

How SSL/TLS Works: The Handshake Explained

TLDR: SSL (now TLS) secures data between your browser and a server. It uses Asymmetric Encryption (Public/Private keys) once — to safely exchange a fast Symmetric Session Key. Everything after the handshake is encrypted with the session key. 📖 The...

Mar 9, 2026•15 min read

Authentication(1)

How OAuth 2.0 Works: The Valet Key Pattern

TLDR: OAuth 2.0 is an authorization protocol. It lets a third-party app (like Spotify) access your resources (like Facebook Friends) without you giving it your Facebook password. It uses short-lived Access Tokens as scoped, revocable keys. 📖 The V...

Mar 9, 2026•14 min read