Publications

OpenAI Internal Model Red Teaming

OpenAI Internal Model Red Teaming

Red Team Network contributions to Operator, GPT-4o, o3-mini, and Deep Research system cards.

For OpenAI (2025)
eBPF Foundation Security Threat Model

eBPF Foundation Security Threat Model

A comprehensive threat model for eBPF-based security solutions.

For eBPF Foundation (2024)
FINOS AI Governance Framework

FINOS AI Governance Framework

AI governance framework for financial services.

For FINOS (Fintech Open Source Foundation) (2024)
FINOS AI Security Reference Architecture

FINOS AI Security Reference Architecture

AI security reference architecture for financial services.

For FINOS (Fintech Open Source Foundation) (2024)
NIST SP 800-233 Service Mesh Proxy Models

NIST SP 800-233 Service Mesh Proxy Models

Security guide to service mesh proxy models for cloud-native applications.

For NIST (National Institute of Standards and Technology) (2024)
CIS Benchmarks for Google Kubernetes Engine

CIS Benchmarks for Google Kubernetes Engine

Center for Internet Security hardening guide for GKE.

For Google Cloud Platform (2018)
Hacking Kubernetes (O'Reilly)

Hacking Kubernetes (O'Reilly)

The definitive guide to Kubernetes offensive and defensive security.

For O'Reilly Media (2021)
Financial Services User Group Kubernetes Threat Model

Financial Services User Group Kubernetes Threat Model

Financial services-specific threat model for Kubernetes.

For FS-ISAC (Financial Services Information Sharing and Analysis Center) (2020)
CNCF Envoy Gateway Threat Model

CNCF Envoy Gateway Threat Model

A comprehensive threat model for the Envoy Gateway.

For CNCF (Cloud Native Computing Foundation) (2022)
Flux D1 Reference GitOps Architecture

Flux D1 Reference GitOps Architecture

A hardened reference architecture for GitOps with Flux CD.

For Flux CD (2024)
Kubernetes for Security Operations Centres

Kubernetes for Security Operations Centres

Community collaboration with JP Morgan CyberOps.

For Community (2023)
CNCF FluxCD Threat Model
For TAG Security (Technical Advisory Group on Security, CNCF) (2023)
CNCF ArgoCD End User Hardening Guide

CNCF ArgoCD End User Hardening Guide

A guide to hardening ArgoCD for end users.

For CNCF (Cloud Native Computing Foundation) (2023)
CNCF Flatcar Threat Model

CNCF Flatcar Threat Model

A project graduation threat model with the TAG Security community.

For TAG Security (Technical Advisory Group on Security, CNCF) (2023)
Hardening Git for GitOps

Hardening Git for GitOps

How to secure Git workflows for GitOps.

For WeaveWorks (2019)