🔗 Cross-cutting Concepts
The glue of this vault. Each concept here appears in three or more domains. This is where the graph becomes connected rather than a set of islands.
Identity & Access
- Authentication — 802.1X, PAM, IAM, OAuth, mTLS
- Identity — RADIUS, LDAP, IAM, Entra, Kerberos
- Secrets Management — Vault, KMS, Secrets Manager, Key Vault
Data protection
- Encryption — TLS, IPsec, LUKS, KMS, envelope encryption
Traffic & topology
- Routing — OSPF, BGP, Linux routes, VPC routes, service mesh
- DNS — BIND, systemd-resolved, Route 53, Azure DNS, CoreDNS
- Segmentation — VLAN, SG/NSG, Kubernetes NetworkPolicy, microsegmentation
Operations
- Observability — SNMP, journald, CloudWatch, Prometheus, SIEM
- High Availability — VRRP, ELB, AZs, replica sets, failover
- Automation-IaC — Ansible, Terraform, Helm, pipelines
All cross-cutting concepts
TABLE WITHOUT ID file.link AS "Note", appears_in AS "Appears in", tags AS "Tags"
FROM "11 - Cross-cutting Concepts"
WHERE type != "moc"
SORT file.name ASC