Topic Index

59 topics across 19 notes.

Use this page as a map of recurring ideas across the journal.

agents

1 notes

agile

1 notes

ai

9 notes
ATO for AI Systems

How AI models actually get authorized in the DoD — the Assess Only construct, the coming NIST 800-53 AI overlays, and the re-authorization trigger problem nobody has solved.

CDAO, Swarms, and the Kill Chain as Microservices

Why the kill chain is decomposing into services on a data fabric — what Replicator's dissolution into DAWG reveals, how Open DAGIR works as an API contract, and where the microservices metaphor breaks.

Zero Trust Meets the AI Stack

Why your ZT architecture must now account for AI systems, model workflows, and the 2026 National Cyber Strategy

architecture

3 notes
CDAO, Swarms, and the Kill Chain as Microservices

Why the kill chain is decomposing into services on a data fabric — what Replicator's dissolution into DAWG reveals, how Open DAGIR works as an API contract, and where the microservices metaphor breaks.

System Design 101

A practical index of system design concepts, patterns, and real-world architecture references.

army

1 notes
Army RMF 2.0: How the Updated Framework Works

How Army RMF 2.0 (Project Sentinel) restructured control selection, inheritance, and monitoring — and how it maps onto the DoD's new five-phase Cybersecurity Risk Management Construct.

ato

3 notes
Continuous ATO in Practice

A technical breakdown of Continuous ATO — what it actually requires, how OSCAL enables machine-readable evidence, and where most DoD programs fail to sustain it.

ATO for AI Systems

How AI models actually get authorized in the DoD — the Assess Only construct, the coming NIST 800-53 AI overlays, and the re-authorization trigger problem nobody has solved.

Army RMF 2.0: How the Updated Framework Works

How Army RMF 2.0 (Project Sentinel) restructured control selection, inheritance, and monitoring — and how it maps onto the DoD's new five-phase Cybersecurity Risk Management Construct.

authorization

3 notes
Continuous ATO in Practice

A technical breakdown of Continuous ATO — what it actually requires, how OSCAL enables machine-readable evidence, and where most DoD programs fail to sustain it.

ATO for AI Systems

How AI models actually get authorized in the DoD — the Assess Only construct, the coming NIST 800-53 AI overlays, and the re-authorization trigger problem nobody has solved.

Army RMF 2.0: How the Updated Framework Works

How Army RMF 2.0 (Project Sentinel) restructured control selection, inheritance, and monitoring — and how it maps onto the DoD's new five-phase Cybersecurity Risk Management Construct.

automation

3 notes

autonomy

2 notes
CDAO, Swarms, and the Kill Chain as Microservices

Why the kill chain is decomposing into services on a data fabric — what Replicator's dissolution into DAWG reveals, how Open DAGIR works as an API contract, and where the microservices metaphor breaks.

cdao

2 notes
ATO for AI Systems

How AI models actually get authorized in the DoD — the Assess Only construct, the coming NIST 800-53 AI overlays, and the re-authorization trigger problem nobody has solved.

CDAO, Swarms, and the Kill Chain as Microservices

Why the kill chain is decomposing into services on a data fabric — what Replicator's dissolution into DAWG reveals, how Open DAGIR works as an API contract, and where the microservices metaphor breaks.

cicd

1 notes

cmmc

3 notes
Continuous ATO in Practice

A technical breakdown of Continuous ATO — what it actually requires, how OSCAL enables machine-readable evidence, and where most DoD programs fail to sustain it.

SBOM in the Defense Industrial Base

A practical breakdown of SBOM requirements, format standards, toolchain options, and where DIB contractors consistently fall short when the contracting officer asks for one.

CMMC 2.0 in Practice

A practical breakdown of CMMC 2.0 levels, NIST SP 800-171 control domains, and what contractors must demonstrate to pass a C3PAO assessment.

coding

2 notes

community

1 notes

compliance

7 notes
Continuous ATO in Practice

A technical breakdown of Continuous ATO — what it actually requires, how OSCAL enables machine-readable evidence, and where most DoD programs fail to sustain it.

ATO for AI Systems

How AI models actually get authorized in the DoD — the Assess Only construct, the coming NIST 800-53 AI overlays, and the re-authorization trigger problem nobody has solved.

Army RMF 2.0: How the Updated Framework Works

How Army RMF 2.0 (Project Sentinel) restructured control selection, inheritance, and monitoring — and how it maps onto the DoD's new five-phase Cybersecurity Risk Management Construct.

CMMC 2.0 in Practice

A practical breakdown of CMMC 2.0 levels, NIST SP 800-171 control domains, and what contractors must demonstrate to pass a C3PAO assessment.

Zero Trust Meets the AI Stack

Why your ZT architecture must now account for AI systems, model workflows, and the 2026 National Cyber Strategy

csrmc

1 notes
Army RMF 2.0: How the Updated Framework Works

How Army RMF 2.0 (Project Sentinel) restructured control selection, inheritance, and monitoring — and how it maps onto the DoD's new five-phase Cybersecurity Risk Management Construct.

cybersecurity

5 notes
Army RMF 2.0: How the Updated Framework Works

How Army RMF 2.0 (Project Sentinel) restructured control selection, inheritance, and monitoring — and how it maps onto the DoD's new five-phase Cybersecurity Risk Management Construct.

SBOM in the Defense Industrial Base

A practical breakdown of SBOM requirements, format standards, toolchain options, and where DIB contractors consistently fall short when the contracting officer asks for one.

CMMC 2.0 in Practice

A practical breakdown of CMMC 2.0 levels, NIST SP 800-171 control domains, and what contractors must demonstrate to pass a C3PAO assessment.

Zero Trust Meets the AI Stack

Why your ZT architecture must now account for AI systems, model workflows, and the 2026 National Cyber Strategy

defense

9 notes
CDAO, Swarms, and the Kill Chain as Microservices

Why the kill chain is decomposing into services on a data fabric — what Replicator's dissolution into DAWG reveals, how Open DAGIR works as an API contract, and where the microservices metaphor breaks.

SBOM in the Defense Industrial Base

A practical breakdown of SBOM requirements, format standards, toolchain options, and where DIB contractors consistently fall short when the contracting officer asks for one.

CMMC 2.0 in Practice

A practical breakdown of CMMC 2.0 levels, NIST SP 800-171 control domains, and what contractors must demonstrate to pass a C3PAO assessment.

Zero Trust Meets the AI Stack

Why your ZT architecture must now account for AI systems, model workflows, and the 2026 National Cyber Strategy

development

2 notes

devops

3 notes

devsecops

9 notes
Continuous ATO in Practice

A technical breakdown of Continuous ATO — what it actually requires, how OSCAL enables machine-readable evidence, and where most DoD programs fail to sustain it.

ATO for AI Systems

How AI models actually get authorized in the DoD — the Assess Only construct, the coming NIST 800-53 AI overlays, and the re-authorization trigger problem nobody has solved.

Army RMF 2.0: How the Updated Framework Works

How Army RMF 2.0 (Project Sentinel) restructured control selection, inheritance, and monitoring — and how it maps onto the DoD's new five-phase Cybersecurity Risk Management Construct.

SBOM in the Defense Industrial Base

A practical breakdown of SBOM requirements, format standards, toolchain options, and where DIB contractors consistently fall short when the contracting officer asks for one.

CMMC 2.0 in Practice

A practical breakdown of CMMC 2.0 levels, NIST SP 800-171 control domains, and what contractors must demonstrate to pass a C3PAO assessment.

Zero Trust Meets the AI Stack

Why your ZT architecture must now account for AI systems, model workflows, and the 2026 National Cyber Strategy

dib

2 notes
SBOM in the Defense Industrial Base

A practical breakdown of SBOM requirements, format standards, toolchain options, and where DIB contractors consistently fall short when the contracting officer asks for one.

CMMC 2.0 in Practice

A practical breakdown of CMMC 2.0 levels, NIST SP 800-171 control domains, and what contractors must demonstrate to pass a C3PAO assessment.

disa

1 notes

dod

6 notes
Continuous ATO in Practice

A technical breakdown of Continuous ATO — what it actually requires, how OSCAL enables machine-readable evidence, and where most DoD programs fail to sustain it.

ATO for AI Systems

How AI models actually get authorized in the DoD — the Assess Only construct, the coming NIST 800-53 AI overlays, and the re-authorization trigger problem nobody has solved.

Army RMF 2.0: How the Updated Framework Works

How Army RMF 2.0 (Project Sentinel) restructured control selection, inheritance, and monitoring — and how it maps onto the DoD's new five-phase Cybersecurity Risk Management Construct.

SBOM in the Defense Industrial Base

A practical breakdown of SBOM requirements, format standards, toolchain options, and where DIB contractors consistently fall short when the contracting officer asks for one.

CMMC 2.0 in Practice

A practical breakdown of CMMC 2.0 levels, NIST SP 800-171 control domains, and what contractors must demonstrate to pass a C3PAO assessment.

edge-computing

1 notes

engineering

1 notes
System Design 101

A practical index of system design concepts, patterns, and real-world architecture references.

enterprise

1 notes

federal

2 notes
Zero Trust Meets the AI Stack

Why your ZT architecture must now account for AI systems, model workflows, and the 2026 National Cyber Strategy

finance

1 notes

gitops

2 notes

governance

2 notes
ATO for AI Systems

How AI models actually get authorized in the DoD — the Assess Only construct, the coming NIST 800-53 AI overlays, and the re-authorization trigger problem nobody has solved.

infrastructure

2 notes

interview-prep

1 notes
System Design 101

A practical index of system design concepts, patterns, and real-world architecture references.

investing

1 notes

jadc2

2 notes
CDAO, Swarms, and the Kill Chain as Microservices

Why the kill chain is decomposing into services on a data fabric — what Replicator's dissolution into DAWG reveals, how Open DAGIR works as an API contract, and where the microservices metaphor breaks.

microservices

1 notes
CDAO, Swarms, and the Kill Chain as Microservices

Why the kill chain is decomposing into services on a data fabric — what Replicator's dissolution into DAWG reveals, how Open DAGIR works as an API contract, and where the microservices metaphor breaks.

military

2 notes
CDAO, Swarms, and the Kill Chain as Microservices

Why the kill chain is decomposing into services on a data fabric — what Replicator's dissolution into DAWG reveals, how Open DAGIR works as an API contract, and where the microservices metaphor breaks.

nist

5 notes
Continuous ATO in Practice

A technical breakdown of Continuous ATO — what it actually requires, how OSCAL enables machine-readable evidence, and where most DoD programs fail to sustain it.

ATO for AI Systems

How AI models actually get authorized in the DoD — the Assess Only construct, the coming NIST 800-53 AI overlays, and the re-authorization trigger problem nobody has solved.

Army RMF 2.0: How the Updated Framework Works

How Army RMF 2.0 (Project Sentinel) restructured control selection, inheritance, and monitoring — and how it maps onto the DoD's new five-phase Cybersecurity Risk Management Construct.

SBOM in the Defense Industrial Base

A practical breakdown of SBOM requirements, format standards, toolchain options, and where DIB contractors consistently fall short when the contracting officer asks for one.

CMMC 2.0 in Practice

A practical breakdown of CMMC 2.0 levels, NIST SP 800-171 control domains, and what contractors must demonstrate to pass a C3PAO assessment.

open-source

1 notes

oscal

1 notes
Continuous ATO in Practice

A technical breakdown of Continuous ATO — what it actually requires, how OSCAL enables machine-readable evidence, and where most DoD programs fail to sustain it.

platform-one

1 notes
Continuous ATO in Practice

A technical breakdown of Continuous ATO — what it actually requires, how OSCAL enables machine-readable evidence, and where most DoD programs fail to sustain it.

policy

2 notes
Zero Trust Meets the AI Stack

Why your ZT architecture must now account for AI systems, model workflows, and the 2026 National Cyber Strategy

policy-as-code

2 notes

productivity

1 notes

programming

1 notes

project-management

1 notes

rmf

2 notes
ATO for AI Systems

How AI models actually get authorized in the DoD — the Assess Only construct, the coming NIST 800-53 AI overlays, and the re-authorization trigger problem nobody has solved.

Army RMF 2.0: How the Updated Framework Works

How Army RMF 2.0 (Project Sentinel) restructured control selection, inheritance, and monitoring — and how it maps onto the DoD's new five-phase Cybersecurity Risk Management Construct.

sbom

1 notes
SBOM in the Defense Industrial Base

A practical breakdown of SBOM requirements, format standards, toolchain options, and where DIB contractors consistently fall short when the contracting officer asks for one.

security

4 notes
Continuous ATO in Practice

A technical breakdown of Continuous ATO — what it actually requires, how OSCAL enables machine-readable evidence, and where most DoD programs fail to sustain it.

software-defined-warfare

2 notes
CDAO, Swarms, and the Kill Chain as Microservices

Why the kill chain is decomposing into services on a data fabric — what Replicator's dissolution into DAWG reveals, how Open DAGIR works as an API contract, and where the microservices metaphor breaks.

software-development

2 notes

stocks

1 notes

supply-chain

1 notes
SBOM in the Defense Industrial Base

A practical breakdown of SBOM requirements, format standards, toolchain options, and where DIB contractors consistently fall short when the contracting officer asks for one.

swarms

1 notes
CDAO, Swarms, and the Kill Chain as Microservices

Why the kill chain is decomposing into services on a data fabric — what Replicator's dissolution into DAWG reveals, how Open DAGIR works as an API contract, and where the microservices metaphor breaks.

system-design

1 notes
System Design 101

A practical index of system design concepts, patterns, and real-world architecture references.

tools

3 notes

trading

1 notes

workflow

1 notes

zero-trust

3 notes
Zero Trust Meets the AI Stack

Why your ZT architecture must now account for AI systems, model workflows, and the 2026 National Cyber Strategy