George Georgovassilis writes about information technology architecture
Motivation If you've ever needed to restrict which commands can be run inside a VS Code integrated terminal - nowadays mainly to prevent agents from wreaking havoc - you can achieve this using a combination of VS Code terminal profiles and PowerShell's PSReadLine module. I'm not sure is/how this works with other terminals, however I've … Continue reading Restricting VS Code terminal commands to an approved commands list
Context: as a tenant administrator you can't inspect KeyVault contents created by other people ("you are unauthorized to view these contents"). Solution: assign yourself appropriate permissions like this: Locate the KeyVault in the Azure portal: go to "Access policies"click "+Add Access Policy"Key permissions: everything under "Key Management Operations" and "Cryptographic Operations"Accordingly for key and certificate … Continue reading Azure diaries: can’t access KeyVault
Slides for a scalable, robust OIDC identity provider with an extensible architecture.
I obtained permission to publish my presentation for an internal gig of a security enterprise architecture. When setting up a security architecture in the enterprise context topics like business continuity, people and processes, governance, services and technology are relevant. https://www.slideshare.net/GeorgeGeorgovassilis/security-architecture-127061728
By observing news and public discussions I feel that there is a growing awareness of data privacy and an increasing demand for secure person-to-person communication. In order to address my communication needs, I plugged together a few Javascript libraries and started the Webencryption [1] project on Github. What is Webencryption? Webencryption is a rather crude … Continue reading Secure messaging in the browser
George's Techblog 