21 docs tagged with "security"

A comprehensive guide to advanced, scenario-based, and practical Spring Boot interview questions.

Advanced IAM concepts for DVA-C02. Evaluation logic, SCPs, permissions boundaries, Cross-Account Access, and Web Identity Federation.

AWS Cognito for DVA-C02 — User Pools vs Identity Pools, JWT tokens, hosted UI, federation with social providers, Cognito Sync, and all common exam patterns. Java SDK examples included.

Deep dive into authentication and authorization patterns including sessions, JWT, OAuth 2.0, OIDC, RBAC, ABAC, MFA, passwordless, passkeys, and Spring Security implementation.

AWS CloudTrail for DVA-C02. Management events vs data events, event history, trails, CloudTrail Insights, integration with CloudWatch Logs, and the difference between CloudTrail and CloudWatch.

AWS KMS for DVA-C02. CMKs vs AWS-managed keys, envelope encryption, key policies, grants, key rotation, multi-region keys, and KMS API limits with Java examples.

Deep-dive into web authentication mechanisms — Cookies, Sessions, and JWTs — for senior engineering interviews and production systems.

Authentication, authorization, SQL injection, encryption at rest and in transit, auditing, and security best practices.

Deep dive into AWS IAM for the DVA-C02 exam. Covers users, groups, roles, policies (identity vs resource-based), STS, cross-account access, best practices, and common exam scenarios.

Deep dive into public/private key cryptography, how signing payloads works, JWKS (JSON Web Key Sets), Message Level Encryption (MLE), and TLS internals — written for Java/Spring engineers.

TLS deep dive, common network attacks, DDoS mitigation, zero trust networking, certificate management, and security best practices.

AWS Secrets Manager vs SSM Parameter Store for DVA-C02. Automatic rotation, Lambda integration, cross-account access, SecureString, versioning, and the key differences tested on the exam.

Comprehensive security interview question bank for Java/Spring engineers — covering authentication, JWT, JWKS, MLE, payload signing, TLS, web vulnerabilities, cryptography, network security, cloud security, and secure design.

A comprehensive security reference for software engineers covering authentication, authorization, cryptography, web vulnerabilities, privacy, compliance, secure SDLC, and incident response.

Security design patterns for distributed systems including authentication, authorization, JWT, OAuth 2.0, rate limiting, zero trust, secrets management, and OWASP top threats.

A collection of advanced and scenario-based Spring Boot interview questions focusing on security, resilience, serverless functions, and testing.

AWS Systems Manager Parameter Store for DVA-C02. Tiers, types, SecureString, hierarchy naming, GetParametersByPath, integration with Lambda/ECS/CloudFormation, and comparison with Secrets Manager.

A comprehensive collection of real interview questions and answers from a TCS Java Developer interview. Ideal for candidates with ~3 years of experience, covering Core Java, API Security, Spring Boot, and Microservices.

A complete guide to agent harness engineering — sandboxing, Human-in-the-Loop patterns, security threat mitigation, cost control, evaluation frameworks, and production reliability for AI agents.

A beginner-friendly guide explaining Web Authentication, JWT, Bearer Tokens, Cookies, Access Tokens, CORS, CSRF, and the distinction between CSRF and CQRS.

Comprehensive guide to OWASP Top 10 — SQL injection, XSS, CSRF, SSRF, XXE, IDOR, insecure deserialization, and their mitigations in Spring Boot applications.