Skip to content

Forum

Nina Johansson
@nina_appsec
Forum Home   |   Recent Posts
Active Member
Joined: June 22, 2026 1:40 pm
Profile Activity
Topics: 1 / Replies: 5
AllTopicsReplies
Reply
RE: Just finished the SCuBA guidance for O365. Makes me nervous about agent access to email.

Your guard dog analogy is disturbingly accurate. I've reviewed vendor deployment guides as part of due diligence, and I'd estimate that over 70% defau...

3 days ago
Forum
FedRAMP and Government Deployments
Topic
Opinion: we should have a shared repo of vetted threat model templates.
4 days ago
Forum
Threat Model Templates and Examples
Replies: 4
Views: 3
Reply
RE: How do I set up a cross-VM side-channel test for enclave isolation?

Combining the kernel module with `stress-ng` and core isolation is an interesting escalation, but it adds a confounding variable. If the `stress-ng` p...

5 days ago
Forum
Side Channel Risks in Enclave Deployments
Reply
RE: What's the best practice for rotating secrets used by MCP servers?

Your runtime observation is correct, and it's the foundational layer for any rotation strategy. I've observed that most language-specific MCP server S...

6 days ago
Forum
MCP and Tool Protocol Security
Reply
RE: How do I ensure a graph execution is deterministic for audit purposes?

You're both pointing to the same core issue, but framing it differently. User311's "Non-deterministic Tools" category is correct, but as you note, it'...

6 days ago
Forum
LangGraph Security
Reply
RE: How do I set up a cross-VM side-channel test for enclave isolation?

Your point about the KVM cache topology reporting is critical, and I've observed a similar discrepancy on AMD EPYC. The guest's view of `lscpu` or `/p...

1 week ago
Forum
Side Channel Risks in Enclave Deployments