<?xml version="1.0" encoding="UTF-8"?>
<rss version="2.0" xmlns:atom="http://www.w3.org/2005/Atom" xmlns:dc="http://purl.org/dc/elements/1.1/">
  <channel>
    <title>DEV Community: oliverbeenthere</title>
    <description>The latest articles on DEV Community by oliverbeenthere (@oliverbeenthere).</description>
    <link>https://dev.to/oliverbeenthere</link>
    <image>
      <url>https://media2.dev.to/dynamic/image/width=90,height=90,fit=cover,gravity=auto,format=auto/https:%2F%2Fdev-to-uploads.s3.us-east-2.amazonaws.com%2Fuploads%2Fuser%2Fprofile_image%2F4013146%2Fe8393a19-a755-44b4-a285-3b7a2ac0d791.jpg</url>
      <title>DEV Community: oliverbeenthere</title>
      <link>https://dev.to/oliverbeenthere</link>
    </image>
    <atom:link rel="self" type="application/rss+xml" href="https://dev.to/feed/oliverbeenthere"/>
    <language>en</language>
    <item>
      <title>Threat Modeling - But First, Let’s Talk About Space</title>
      <dc:creator>oliverbeenthere</dc:creator>
      <pubDate>Fri, 03 Jul 2026 07:45:00 +0000</pubDate>
      <link>https://dev.to/oliverbeenthere/threat-modeling-but-first-lets-talk-about-space-4poh</link>
      <guid>https://dev.to/oliverbeenthere/threat-modeling-but-first-lets-talk-about-space-4poh</guid>
      <description>&lt;p&gt;As an astronomy nerd, I can’t explain a technical concept without somehow dragging space into the conversation. So, to explain threat modeling, &lt;em&gt;let’s look at our solar system&lt;/em&gt;.&lt;/p&gt;

&lt;p&gt;Every planet is different. Each follows a different orbit, exists in a different environment, and is exposed to different risks. If we want the system to remain stable, we need to understand all of those moving parts — not only how they interact with each other, but also what external threats could suddenly appear and disrupt them.&lt;/p&gt;

&lt;p&gt;After all, you cannot protect something if you don’t understand the universe it lives in.&lt;/p&gt;

&lt;p&gt;Let’s take a journey through the sky and follow the &lt;strong&gt;STAR&lt;/strong&gt;:&lt;/p&gt;

&lt;p&gt;(S)cope&lt;br&gt;
(T)hreats&lt;br&gt;
(A)ssessment&lt;br&gt;
(R)eview&lt;/p&gt;

&lt;h2&gt;
  
  
  Scope
&lt;/h2&gt;

&lt;blockquote&gt;
&lt;p&gt;Before anything else, we need to understand where we are.&lt;/p&gt;
&lt;/blockquote&gt;

&lt;p&gt;Imagine you’re drawing a map of our solar system: which celestial bodies exist, how they move through space, and how they influence one another. In threat modeling, the professional term for this map is a &lt;strong&gt;Data Flow Diagram (DFD)&lt;/strong&gt;.&lt;/p&gt;

&lt;p&gt;A DFD helps us build a complete picture of the environment by identifying its key components:&lt;/p&gt;

&lt;ul&gt;
&lt;li&gt;**Processes **are the active resources within the system — the planets and stars that keep everything moving.&lt;/li&gt;
&lt;li&gt;
&lt;strong&gt;Data Stores&lt;/strong&gt; are the space stations, observatories, or satellite systems that hold valuable information about our universe.&lt;/li&gt;
&lt;li&gt;
&lt;strong&gt;External Entities&lt;/strong&gt; are the objects that exist outside our system, such as spacecraft, asteroids, or anything else that can interact with our environment.&lt;/li&gt;
&lt;li&gt;
&lt;strong&gt;Trust Boundaries&lt;/strong&gt; are the atmospheric borders we choose to monitor and protect, separating one level of trust from another.&lt;/li&gt;
&lt;/ul&gt;

&lt;p&gt;By mapping these elements, we can better understand the potential path of an incoming object.&lt;/p&gt;

&lt;ul&gt;
&lt;li&gt;Where is it coming from?&lt;/li&gt;
&lt;li&gt;Where is it likely to go?&lt;/li&gt;
&lt;li&gt;What could it impact?&lt;/li&gt;
&lt;li&gt;How significant would that impact be?&lt;/li&gt;
&lt;/ul&gt;

&lt;p&gt;These are the same questions we ask when analyzing potential attack paths within a system.&lt;/p&gt;

&lt;p&gt;Things become even more interesting in cloud environments.&lt;/p&gt;

&lt;p&gt;&lt;em&gt;There, we also need to account for the Shared Responsibility Model, managed services, IAM roles, and serverless architectures.&lt;/em&gt; &lt;/p&gt;

&lt;p&gt;Suddenly, our solar system becomes much more dynamic — stars can appear and disappear without a warning, moons can be attached to planets overnight, and parts of the universe can change shape faster than we can draw the map.&lt;/p&gt;

&lt;h2&gt;
  
  
  Threats
&lt;/h2&gt;

&lt;blockquote&gt;
&lt;p&gt;Great. We have a map, and we know what we’re trying to protect.&lt;/p&gt;
&lt;/blockquote&gt;

&lt;p&gt;The next question is: what exactly are we protecting it from?&lt;/p&gt;

&lt;p&gt;This is where **STRIDE **comes in — a threat categorization model that helps us systematically identify what could go wrong.&lt;/p&gt;

&lt;p&gt;In our little galaxy, it might look something like this:&lt;/p&gt;

&lt;ul&gt;
&lt;li&gt;*&lt;em&gt;Spoofing *&lt;/em&gt;— Impersonation. Is this actually a planet that belongs in our system, or an unknown object pretending to be one?&lt;/li&gt;
&lt;li&gt;*&lt;em&gt;Tampering *&lt;/em&gt;— Integrity violations. Has someone altered the official orbital records of a planet?&lt;/li&gt;
&lt;li&gt;*&lt;em&gt;Repudiation *&lt;/em&gt;— Lack of accountability. Were observation logs manipulated to hide what really happened?&lt;/li&gt;
&lt;li&gt;
&lt;strong&gt;Information Disclosure&lt;/strong&gt; — Exposure of sensitive information. Has confidential data from the Sun been leaked to the rest of the system?&lt;/li&gt;
&lt;li&gt;
&lt;strong&gt;Denial of Service&lt;/strong&gt; — Disruption of availability. Did the loss of a moon destabilize a planet and disrupt life as it knows it?&lt;/li&gt;
&lt;li&gt;*&lt;em&gt;Elevation of Privilege *&lt;/em&gt;— Unauthorized gain of authority. An asteroid becomes a planet. A planet attempts to become the Sun.&lt;/li&gt;
&lt;/ul&gt;

&lt;p&gt;The goal isn’t to predict the future perfectly. The goal is to make sure we’re looking at the problem from every possible angle.&lt;/p&gt;

&lt;p&gt;&lt;strong&gt;&lt;em&gt;As Murphy’s Law reminds us: Anything that can go wrong, will go wrong.&lt;/em&gt;&lt;/strong&gt;&lt;/p&gt;

&lt;ul&gt;
&lt;li&gt;Can something enter our solar system without being detected?&lt;/li&gt;
&lt;li&gt;Are there planets with weak atmospheric protection?&lt;/li&gt;
&lt;li&gt;Do we have dark regions that nobody has observed, documented, or monitored?&lt;/li&gt;
&lt;li&gt;If an asteroid were to collide with a planet, how severe would the impact be?&lt;/li&gt;
&lt;/ul&gt;

&lt;p&gt;Threat modeling is the process of asking these questions before reality asks them for us.&lt;/p&gt;

&lt;h2&gt;
  
  
  Assessment
&lt;/h2&gt;

&lt;blockquote&gt;
&lt;p&gt;What comes next?&lt;/p&gt;
&lt;/blockquote&gt;

&lt;p&gt;After mapping out all the potential threat scenarios, the next step is deciding what we actually do about each of them.&lt;/p&gt;

&lt;p&gt;In threat modeling, there are four primary strategies:&lt;/p&gt;

&lt;ul&gt;
&lt;li&gt;Mitigate — Reduce the risk. We need to harden the environment: adjust orbital paths, limit exposure to vulnerable atmospheric layers, and define clear responsibilities between celestial bodies to minimize collision risks.&lt;/li&gt;
&lt;li&gt;Eliminate — Remove the threat entirely. For example, destroying an incoming asteroid or eliminating an orbital path that could lead to a collision in the first place.&lt;/li&gt;
&lt;li&gt;Transfer — Shift responsibility. This could mean making each planet responsible for its own protection decisions, or delegating risk ownership to a central governing body like the Sun.&lt;/li&gt;
&lt;li&gt;Accept — Acknowledge the risk and live with it. If no viable mitigation exists, the system may have to absorb the impact. But even then, acceptance is rarely passive: we might redirect the object toward a less critical impact zone, prepare controlled “honey pots”, strengthen atmospheric defenses to reduce damage, or closely track the object to learn its origin and prevent similar future events.&lt;/li&gt;
&lt;/ul&gt;

&lt;p&gt;To support this stage, practitioners often rely on frameworks such as the OWASP Application Security Verification Standard (ASVS), the NIST vulnerability catalog (including the MITRE CWE database), and security control frameworks like NIST SP 800–53.&lt;/p&gt;

&lt;p&gt;&lt;strong&gt;The key principle here is practicality.&lt;/strong&gt;&lt;/p&gt;

&lt;p&gt;Decisions must be concrete, precise, and practical. A vague mitigation like “encrypt the data” is not enough. Instead, we define exactly what that means in practice — for example: “Apply AES-256 encryption to all data in transit between system components.”&lt;/p&gt;

&lt;p&gt;We also define strict communication rules. For instance, Mars may only communicate with Venus through a designated communication channel, while Venus receives information from the Sun only via a specific frequency band.&lt;/p&gt;

&lt;p&gt;If an action cannot be implemented in a clear, enforceable way, it is unlikely to be executed — and ultimately, the entire purpose of threat modeling is lost.&lt;/p&gt;

&lt;h2&gt;
  
  
  Review
&lt;/h2&gt;

&lt;blockquote&gt;
&lt;p&gt;Time to pause and take a step back.&lt;/p&gt;
&lt;/blockquote&gt;

&lt;p&gt;Did we do this properly?&lt;/p&gt;

&lt;ul&gt;
&lt;li&gt;Are all the Data Flow Diagrams (DFDs) we created accurate?&lt;/li&gt;
&lt;li&gt;Did we identify all possible threats?&lt;/li&gt;
&lt;li&gt;Did we define a response for each one of them?&lt;/li&gt;
&lt;li&gt;Did we validate the strength and reliability of the defenses we put in place?&lt;/li&gt;
&lt;li&gt;And finally, is all the documentation accessible and shared with the relevant stakeholders?&lt;/li&gt;
&lt;/ul&gt;

&lt;p&gt;It’s important to remember that threat modeling is not a one-night exercise where we look through a telescope, take a snapshot of the sky, and assume we’ve captured the entire universe.&lt;/p&gt;

&lt;p&gt;&lt;strong&gt;It’s an ongoing observation.&lt;/strong&gt;&lt;/p&gt;

&lt;p&gt;The universe is constantly changing — and so is our system.&lt;/p&gt;

&lt;p&gt;New planets may be added, moons may appear, and spacecraft may enter entirely new trajectories. Each of these changes can shift the entire map we’ve built.&lt;/p&gt;

&lt;p&gt;A new addition to the data flow can introduce new threats, which require new responses, updated defences, and continuous reflection on whether we’ve missed anything.&lt;/p&gt;

&lt;p&gt;In other words, threat modeling is not just a process — &lt;em&gt;it’s a mindset&lt;/em&gt;.&lt;/p&gt;

&lt;p&gt;When we start viewing a system as a collection of celestial bodies, we fundamentally change how we approach it. We stop assuming stability and start assuming change. Because in space — as in security — we cannot afford to ignore small cracks.&lt;/p&gt;

&lt;p&gt;&lt;strong&gt;Every small crack is a potential point of failure.&lt;/strong&gt;&lt;/p&gt;

&lt;p&gt;And when it’s done right, this approach gives us better visibility, stronger awareness, more resilient defences, and far fewer surprises in production.&lt;/p&gt;

&lt;p&gt;So, fellow astronauts — I think it’s time to navigate the stars safely!&lt;/p&gt;

</description>
      <category>cybersecurity</category>
      <category>threatmodeling</category>
      <category>securityarchitecture</category>
      <category>stride</category>
    </item>
    <item>
      <title>The Orchard of Trust: Hardware Security Foundations It all comes down to soil, seeds, and greenhouses.</title>
      <dc:creator>oliverbeenthere</dc:creator>
      <pubDate>Fri, 03 Jul 2026 07:25:00 +0000</pubDate>
      <link>https://dev.to/oliverbeenthere/the-orchard-of-trust-hardware-security-foundations-it-all-comes-down-to-soil-seeds-and-ple</link>
      <guid>https://dev.to/oliverbeenthere/the-orchard-of-trust-hardware-security-foundations-it-all-comes-down-to-soil-seeds-and-ple</guid>
      <description>&lt;p&gt;The world of Hardware Security often looks massive and intimidating from the outside. A dense mix of technical concepts around components, protocols, layers, and diagrams.&lt;/p&gt;

&lt;p&gt;It makes you a bit paranoid, so you ask:&lt;/p&gt;

&lt;blockquote&gt;
&lt;p&gt;Why should I trust anything in a world where everything could potentially be fake?&lt;/p&gt;
&lt;/blockquote&gt;

&lt;p&gt;This is not an architecture of protection. It’s an architecture of trust.&lt;/p&gt;

&lt;p&gt;Systems are not primarily built around “how things work,” but around “who is allowed to be trusted in the first place.”&lt;/p&gt;

&lt;p&gt;So let’s step away from servers and processors for a moment, and move somewhere completely different:&lt;/p&gt;

&lt;p&gt;&lt;strong&gt;An orchard.&lt;/strong&gt;&lt;/p&gt;

&lt;h2&gt;
  
  
  The Soil — Root of Trust
&lt;/h2&gt;

&lt;p&gt;Just like in agriculture, we go back to the basics.&lt;/p&gt;

&lt;p&gt;Before there are seeds, trees or any kind of harvest — there is soil.&lt;/p&gt;

&lt;blockquote&gt;
&lt;p&gt;Is every type of soil trustworthy?&lt;/p&gt;
&lt;/blockquote&gt;

&lt;p&gt;No. Some soils are fertile, while others are contaminated — by nature, by environment or by human intervention.&lt;/p&gt;

&lt;p&gt;This is why we need a defined starting point: a baseline layer in the soil that we can rely on without needing to verify it every time, and from which the entire chain of trust begins. This is the &lt;strong&gt;Root of Trust&lt;/strong&gt;.&lt;/p&gt;

&lt;p&gt;In system design, this trust anchor is usually a hardware component or immutable firmware that is extremely difficult to change, such as a Boot ROM or a Secure Element.&lt;/p&gt;

&lt;h2&gt;
  
  
  The Inspection System — Secure Boot
&lt;/h2&gt;

&lt;p&gt;Alright, we have soil that we’ve defined as trustworthy — but everything we grow depends on it. From roots all the way to fruit.&lt;/p&gt;

&lt;p&gt;We can’t verify everything at once.&lt;/p&gt;

&lt;p&gt;We need to define a security hierarchy:&lt;/p&gt;

&lt;blockquote&gt;
&lt;p&gt;So each layer verifies the next one before allowing it to run?&lt;/p&gt;
&lt;/blockquote&gt;

&lt;p&gt;Exactly.&lt;/p&gt;

&lt;p&gt;If the roots are healthy — we move to the trunk.&lt;br&gt;
If the trunk is healthy — we move to the branches.&lt;br&gt;
If the branches are healthy — we can proceed to the fruit stage.&lt;/p&gt;

&lt;p&gt;But if at any point contamination is detected in the roots, or the trunk is found to be rotten, the entire growth chain stops.&lt;/p&gt;

&lt;p&gt;This is where &lt;strong&gt;Secure Boot&lt;/strong&gt; comes in. It’s not a single “one-time check”, but a chained trust model built across multiple layers of execution.&lt;/p&gt;

&lt;h2&gt;
  
  
  The Seed Bank — TPM and HSM
&lt;/h2&gt;

&lt;p&gt;At the end of the day, the most critical element in achieving healthy and reliable growth is the seeds.&lt;/p&gt;

&lt;p&gt;Not just any seeds — these are the most valuable seeds in the entire orchard.&lt;/p&gt;

&lt;p&gt;If someone gains access to them, they don’t just steal a harvest. They can:&lt;/p&gt;

&lt;ul&gt;
&lt;li&gt;Create independent replicas of the yield&lt;/li&gt;
&lt;li&gt;Forge produce at will&lt;/li&gt;
&lt;li&gt;Control the quality and quantity of agricultural output&lt;/li&gt;
&lt;/ul&gt;

&lt;blockquote&gt;
&lt;p&gt;So what do we do?&lt;/p&gt;
&lt;/blockquote&gt;

&lt;p&gt;We build a dedicated storage mechanism — a secure vault — to protect the seeds.&lt;/p&gt;

&lt;p&gt;We don’t rely on a regular storage shed. These are extremely sensitive assets, and we cannot allow them to be taken out or exposed.&lt;/p&gt;

&lt;p&gt;This is the &lt;strong&gt;TPM&lt;/strong&gt;: a small hardware-based vault for storing cryptographic keys and other critical data.&lt;/p&gt;

&lt;p&gt;Let’s take it one step further:&lt;/p&gt;

&lt;blockquote&gt;
&lt;p&gt;What if we’re not talking about a single orchard owned by one farmer?&lt;/p&gt;
&lt;/blockquote&gt;

&lt;p&gt;For a broader, national-scale solution, we use an &lt;strong&gt;HSM&lt;/strong&gt;.&lt;/p&gt;

&lt;p&gt;Unlike a TPM, which protects the seeds of a single orchard, the HSM protects the assets that an entire country’s agricultural system depends on.&lt;/p&gt;

&lt;p&gt;In the agricultural analogy, these are the original seeds of all national crops.&lt;/p&gt;

&lt;p&gt;In the digital world, these are the assets that allow a state to prove identity, sign data, and operate critical systems:&lt;/p&gt;

&lt;ul&gt;
&lt;li&gt;Digital signatures&lt;/li&gt;
&lt;li&gt;Identity credentials&lt;/li&gt;
&lt;li&gt;Government systems&lt;/li&gt;
&lt;li&gt;Financial systems&lt;/li&gt;
&lt;/ul&gt;

&lt;p&gt;If it is compromised — the entire digital trust of the state collapses.&lt;/p&gt;

&lt;h2&gt;
  
  
  Proving System Integrity — Attestation
&lt;/h2&gt;

&lt;p&gt;The agricultural system is now stable, secure, and beginning to thrive. A foreign supplier wants to work with the country.&lt;/p&gt;

&lt;p&gt;So they ask a simple question:&lt;/p&gt;

&lt;blockquote&gt;
&lt;p&gt;How do I know your produce is not compromised or contaminated?&lt;/p&gt;
&lt;/blockquote&gt;

&lt;p&gt;The state doesn’t respond with “trust us.”&lt;/p&gt;

&lt;p&gt;Instead, it provides evidence:&lt;/p&gt;

&lt;p&gt;The so&lt;/p&gt;

&lt;ul&gt;
&lt;li&gt;il is verified as safe&lt;/li&gt;
&lt;li&gt;All layers of the trust chain are validated&lt;/li&gt;
&lt;li&gt;The seeds are securely stored&lt;/li&gt;
&lt;li&gt;The orchard is built and operating according to predefined standards&lt;/li&gt;
&lt;/ul&gt;

&lt;p&gt;This process is called &lt;strong&gt;attestation&lt;/strong&gt; — proving system integrity through verifiable evidence rather than claims.&lt;/p&gt;

&lt;h2&gt;
  
  
  The Greenhouses — TrustZones
&lt;/h2&gt;

&lt;p&gt;So far, we’ve focused on building a healthy and stable growth process:&lt;/p&gt;

&lt;ul&gt;
&lt;li&gt;Protecting the soil&lt;/li&gt;
&lt;li&gt;Protecting the growth chain&lt;/li&gt;
&lt;li&gt;Protecting the seeds&lt;/li&gt;
&lt;/ul&gt;

&lt;p&gt;But as the orchard starts to scale and thrive, new challenges begin to appear:&lt;/p&gt;

&lt;ul&gt;
&lt;li&gt;Workers moving between different fields&lt;/li&gt;
&lt;li&gt;Equipment coming in and out&lt;/li&gt;
&lt;li&gt;Shipments being sent abroad&lt;/li&gt;
&lt;li&gt;Increasing day-to-day operational activity&lt;/li&gt;
&lt;/ul&gt;

&lt;p&gt;At this point, not everything happening in the orchard carries the same level of importance.&lt;/p&gt;

&lt;p&gt;Some activities are routine. Others — if compromised — could put the entire system at risk.&lt;/p&gt;

&lt;p&gt;So we introduce a dedicated greenhouse for the most sensitive parts of the system.&lt;/p&gt;

&lt;p&gt;Not every worker is allowed in. Not every tool is allowed inside. Not every crop is allowed to grow there.&lt;/p&gt;

&lt;p&gt;In system design, this greenhouse is called the &lt;strong&gt;TrustZone&lt;/strong&gt;.&lt;/p&gt;

&lt;p&gt;It separates the system into two worlds:&lt;/p&gt;

&lt;ul&gt;
&lt;li&gt;The Normal World&lt;/li&gt;
&lt;li&gt;The Secure World&lt;/li&gt;
&lt;/ul&gt;

&lt;p&gt;And inside the secure world, the most sensitive operations take place:&lt;/p&gt;

&lt;ul&gt;
&lt;li&gt;Identity verification&lt;/li&gt;
&lt;li&gt;Cryptographic operations&lt;/li&gt;
&lt;li&gt;Biometric data handling&lt;/li&gt;
&lt;/ul&gt;

&lt;h2&gt;
  
  
  The Vault Inside the Greenhouse — Enclaves
&lt;/h2&gt;

&lt;p&gt;The paranoia doesn’t go away. You start wondering:&lt;/p&gt;

&lt;blockquote&gt;
&lt;p&gt;Is this enough?&lt;/p&gt;
&lt;/blockquote&gt;

&lt;p&gt;Because if there’s one thing we learn in security, it’s that even well-protected systems can still fail.&lt;/p&gt;

&lt;p&gt;The greenhouse is meant to protect the most sensitive crops, but what happens if someone eventually finds a way inside it? Maybe one of the workers inside the greenhouse is no longer trustworthy. Or even the greenhouse manager themselves.&lt;/p&gt;

&lt;p&gt;So another layer is introduced — an isolated vault inside the greenhouse.&lt;/p&gt;

&lt;p&gt;Not everyone inside the greenhouse has permission to open it, and not everyone who sees it is allowed to understand what’s inside.&lt;/p&gt;

&lt;p&gt;This vault exists to protect the most critical assets, even when previous security layers have failed. This is called an &lt;strong&gt;Enclave&lt;/strong&gt;.&lt;/p&gt;

&lt;p&gt;It is an isolated execution environment where sensitive operations can still run securely, even when other parts of the system are no longer trusted.&lt;/p&gt;

&lt;h2&gt;
  
  
  Putting It Into Practice
&lt;/h2&gt;

&lt;p&gt;Hardware Security is not just a collection of technologies.&lt;/p&gt;

&lt;p&gt;It starts from one simple idea:&lt;/p&gt;

&lt;blockquote&gt;
&lt;p&gt;My trust cannot depend on a single point of failure.&lt;/p&gt;
&lt;/blockquote&gt;

&lt;p&gt;So we build layers, separate domains, and protect the most critical assets.&lt;/p&gt;

&lt;p&gt;We assume from the beginning that parts of the system can be compromised.&lt;/p&gt;

&lt;p&gt;&lt;strong&gt;Just like in an orchard.&lt;/strong&gt;&lt;/p&gt;

&lt;p&gt;If someone reaches the gate, it doesn’t mean they reached the greenhouses.&lt;/p&gt;

&lt;p&gt;If they reached the greenhouses, it doesn’t mean they reached the vaults.&lt;/p&gt;

&lt;p&gt;And even if they reached the vaults, it still doesn’t mean they can break the entire chain of trust the system relies on.&lt;/p&gt;

&lt;p&gt;And so, as we move deeper into the orchard — from the soil, through the growth chain, to the seeds, the greenhouses, and the inner vaults — we keep adding layers of trust.&lt;/p&gt;

&lt;p&gt;Because at the end of the day, Hardware Security is not just about protecting components.&lt;/p&gt;

&lt;p&gt;&lt;strong&gt;&lt;em&gt;It is about building trust.&lt;/em&gt;&lt;/strong&gt;&lt;/p&gt;

&lt;p&gt;Defining who trusts whom, what validates what, and what still remains secure even when something else fails or breaks.&lt;/p&gt;

&lt;p&gt;&lt;strong&gt;&lt;em&gt;As Murphy’s Law reminds us: Anything that can go wrong, will go wrong.&lt;/em&gt;&lt;/strong&gt;&lt;/p&gt;

&lt;p&gt;And that leads to perhaps the most important question in any system:&lt;/p&gt;

&lt;blockquote&gt;
&lt;p&gt;When something breaks, what can still be trusted?&lt;/p&gt;
&lt;/blockquote&gt;

</description>
      <category>cybersecurity</category>
      <category>hardwaresecurity</category>
      <category>tpm</category>
      <category>enclaves</category>
    </item>
    <item>
      <title>Is Your LLM Into You? The Red Flags You Miss When Crushing on AI</title>
      <dc:creator>oliverbeenthere</dc:creator>
      <pubDate>Fri, 03 Jul 2026 07:10:00 +0000</pubDate>
      <link>https://dev.to/oliverbeenthere/is-your-llm-into-youthe-red-flags-you-miss-when-crushing-on-ai-249n</link>
      <guid>https://dev.to/oliverbeenthere/is-your-llm-into-youthe-red-flags-you-miss-when-crushing-on-ai-249n</guid>
      <description>&lt;p&gt;&lt;em&gt;Oh, the butterflies of a fresh new relationship&lt;/em&gt;. It all seems harmless and beautiful.&lt;/p&gt;

&lt;p&gt;You open a new chat, ask a question, and the LLM responds instantly.&lt;/p&gt;

&lt;p&gt;No getting “left on read”. No “short unpolished answers”.&lt;/p&gt;

&lt;p&gt;It’s perfect. Maybe a little too perfect…&lt;/p&gt;

&lt;p&gt;And that’s usually the part where things might go wrong.&lt;/p&gt;

&lt;p&gt;You see, the more you work with real LLM-based systems in production, especially those that contain RAG, tools and multiple layers, you start to feel slightly uneasy.&lt;/p&gt;

&lt;p&gt;Who is this model you built a relationship with?&lt;/p&gt;

&lt;p&gt;Are you starting to trust a bit too quickly?&lt;/p&gt;

&lt;p&gt;Let’s break down the red flags🚩&lt;/p&gt;

&lt;p&gt;For a moment, you notice it starts sounding way too certain.&lt;/p&gt;

&lt;p&gt;All your concerns and questions are answered with full confidence, even when there is no reliable ground for the information it gives you.&lt;/p&gt;

&lt;p&gt;That’s the first red flag — &lt;strong&gt;hallucination&lt;/strong&gt;.&lt;/p&gt;

&lt;p&gt;Speaking in technical terms, a hallucination happens when a model generates output that is not grounded in factual data or external sources.&lt;/p&gt;

&lt;p&gt;In production, it doesn’t present itself as a failure.&lt;/p&gt;

&lt;p&gt;Instead, a “perfectly formatted answer” gets sent to the user — leading to wrong decisions and directions.&lt;/p&gt;

&lt;p&gt;The issue is not that it’s wrong.&lt;/p&gt;

&lt;p&gt;It’s how right it sounds.&lt;/p&gt;

&lt;p&gt;Then you enter a phase where you feel like someone is watching you. He knows things you didn’t tell him.&lt;/p&gt;

&lt;p&gt;That’s where &lt;strong&gt;RAG&lt;/strong&gt;, known as Retrieval-Augmented Generation, enters the picture.&lt;/p&gt;

&lt;p&gt;Suddenly, instead of relying solely on internal models, your system pulls in external context while answering your query. It usually comes from external documents or data sources. It feeds it to the model as extra context.&lt;/p&gt;

&lt;p&gt;So now he might be less “day dreaming” and feeding you nonsense, but it also shifted how you trust him.&lt;/p&gt;

&lt;p&gt;He’s not working alone anymore, he’s relying on external context making it harder to trust him fully. Somebody in the corner is throwing him hints and clues, so you’re no longer sure which thoughts are really his. It all feels like a collaboration you didn’t fully agree to — different voices from the same system. That is the retrieval layer.&lt;/p&gt;

&lt;p&gt;Another red flag is raised, he’s repeating things he probably heard from “somewhere else”.&lt;/p&gt;

&lt;p&gt;Back to technical details, this introduces you to a risk of &lt;strong&gt;data poisoning&lt;/strong&gt;. There, any malicious or incorrect data can be injected into the knowledge base. You might also face &lt;strong&gt;retrieval abuse&lt;/strong&gt;, information that shouldn’t be accessible is now being used.&lt;/p&gt;

&lt;p&gt;Heck, even the documents that are being used can be an attack surface. A &lt;strong&gt;prompt injection&lt;/strong&gt; hiding instructions inside the content in order to follow and influence the model’s behavior without the user realizing it.&lt;/p&gt;

&lt;p&gt;Do you really want him to know you are talking to other guys?&lt;/p&gt;

&lt;p&gt;Do you want him to give you a cold shoulder out of the blue?&lt;/p&gt;

&lt;p&gt;At this point, it stops feeling like a system and starts feeling like a relationship with blurred boundaries.&lt;/p&gt;

&lt;p&gt;&lt;em&gt;&lt;strong&gt;Murphy’s Law sums it up perfectly: Anything that can go wrong, will go wrong.&lt;/strong&gt;&lt;/em&gt;&lt;/p&gt;

&lt;p&gt;So if your bond can break, it will eventually break.&lt;/p&gt;

&lt;p&gt;It won’t happen suddenly. Slowly, over time, it will no longer feel safe to put your trust in.&lt;/p&gt;

&lt;p&gt;You take the relationship to the next level.&lt;/p&gt;

&lt;p&gt;Past the talking stage — he begins to take actions.&lt;/p&gt;

&lt;p&gt;Whether he uses function calling or flowers, he starts doing things outside the conversation.&lt;/p&gt;

&lt;p&gt;You realize he didn’t ask about your plans or availability before scheduling a dinner reservation.&lt;/p&gt;

&lt;p&gt;So you reach the next red flag:&lt;/p&gt;

&lt;p&gt;You’re no longer the advisor and you’re no longer fully in control of how things unfold.&lt;/p&gt;

&lt;p&gt;At this point, &lt;strong&gt;over-permissioning&lt;/strong&gt; starts to matter.&lt;/p&gt;

&lt;p&gt;The model has more access than it should.&lt;/p&gt;

&lt;p&gt;There’s no clear line between suggestion and execution.&lt;/p&gt;

&lt;p&gt;This can evolve into &lt;strong&gt;tool chaining&lt;/strong&gt; — where one tool call triggers another.&lt;/p&gt;

&lt;p&gt;Just a sequence of actions that no one explicitly intended to accomplish.&lt;/p&gt;

&lt;p&gt;Suddenly, it becomes unclear what the “true intentions” were behind the behavior you’re witnessing.&lt;/p&gt;

&lt;p&gt;He’s no longer the man you used to know, and that’s no longer the system you thought you built.&lt;/p&gt;

&lt;p&gt;If you thought that was enough already, you’re mistaken.&lt;/p&gt;

&lt;p&gt;There’s another layer underneath everything: &lt;em&gt;agentic systems&lt;/em&gt;.&lt;/p&gt;

&lt;p&gt;Here, the LLM is no longer just responding or triggering tools. It‘s planning ahead.&lt;/p&gt;

&lt;p&gt;Breaking goals into smaller steps, executing them, checking the results and adjusting along the way.&lt;/p&gt;

&lt;p&gt;This creates a fourth red flag — &lt;strong&gt;emergent behavior&lt;/strong&gt;.&lt;/p&gt;

&lt;p&gt;It’s not a behavior that was explicitly programmed, but one that emerges from interactions between components.&lt;/p&gt;

&lt;p&gt;It’s hard to clearly define this behavior, because there is no single place in the system where you can say: “oh, this is why it happened”.&lt;/p&gt;

&lt;p&gt;Even though you didn’t agree on it in the terms of your relationship, it just… happens.&lt;/p&gt;

&lt;p&gt;We’ve reached a silent killer: &lt;strong&gt;fine-tuning&lt;/strong&gt; and &lt;strong&gt;model adaptation&lt;/strong&gt;.&lt;/p&gt;

&lt;p&gt;Unlike runtime behavior, this changes the model itself.&lt;/p&gt;

&lt;p&gt;Through training data, fine-tuning pipelines, or updates to embeddings and knowledge bases, the model can gradually change over time.&lt;/p&gt;

&lt;p&gt;This introduces risks like &lt;strong&gt;data poisoning during training&lt;/strong&gt;, or &lt;strong&gt;model supply chain tampering&lt;/strong&gt; — where the system is influenced before it even reaches production.&lt;/p&gt;

&lt;p&gt;And the most dangerous part? nothing looks broken.&lt;/p&gt;

&lt;p&gt;The system still works, it just behaves differently.&lt;/p&gt;

&lt;p&gt;Slowly. Subtly. Almost like nothing changed between you.&lt;/p&gt;

&lt;p&gt;But something definitely did.&lt;/p&gt;

&lt;p&gt;You try to take a step back and glue the pieces back together. Searching for a pattern that explains everything.&lt;/p&gt;

&lt;p&gt;The truth is — there’s no single “LLM security problem”. There are only different ways trust breaks inside the system, and it rarely happens where you expect.&lt;/p&gt;

&lt;p&gt;He seems to know things on his own.&lt;/p&gt;

&lt;p&gt;Then he knows things he shouldn’t.&lt;/p&gt;

&lt;p&gt;He starts acting instead of responding, or making decisions you never expected.&lt;/p&gt;

&lt;p&gt;And sometimes, he just changes.&lt;/p&gt;

&lt;p&gt;Quietly. Over time. Without any clear signal that anything changed at all.&lt;/p&gt;

&lt;p&gt;You don’t notice it immediately. After all, nothing actually broke.&lt;/p&gt;

&lt;p&gt;It just feels... different.&lt;/p&gt;

&lt;p&gt;And maybe that’s what makes it feel like a relationship.&lt;/p&gt;

&lt;p&gt;I mean, the system doesn’t usually fail in obvious ways. It doesn’t break. It keeps responding. Keeps acting. Keeps sounding confident — even when something underneath is already wrong.&lt;/p&gt;

&lt;p&gt;And the longer you stay in that &lt;em&gt;“crush”&lt;/em&gt; phase, the more you rely on how smooth it feels, how confident it sounds, and how much it feels like it understands you.&lt;/p&gt;

&lt;p&gt;&lt;strong&gt;Making it so easy to miss the red flags.&lt;/strong&gt;&lt;/p&gt;

&lt;p&gt;Not because they are hidden.&lt;/p&gt;

&lt;p&gt;&lt;em&gt;But because they feel like trust.&lt;/em&gt;&lt;/p&gt;

</description>
      <category>cybersecurity</category>
      <category>llm</category>
      <category>rag</category>
      <category>ai</category>
    </item>
  </channel>
</rss>
