CodeClarityLab / Glossary
Ctrl K
← Home ← Codex ← DEBT
Browse by Category
+ added · updated 7d
⚖ Terms of Use ✉ Contact

Tag: security

14 terms of 1466 total

Sort A → Z Recently Added Recently Updated Difficulty Most Viewed Most Rated Most Shared
Level All Beginner Intermediate Advanced Tag: security
✕ Clear A B C D E F G H I J K L M N O P Q R S T U V W X Y Z
Diagram: AI Context Poisoning AI Context Poisoning 🧠 1
An adversarial technique where malicious instructions are injected into an LLM's context window — via user input, retrieved documents, or tool results — to hijack the model's behaviour.
2mo ago ai_ml advanced
Diagram: AI Guardrails AI Guardrails 🧠 1
Runtime constraints and safety filters applied around LLM calls to detect, block, or rewrite inputs and outputs that are harmful, off-topic, or policy-violating.
2mo ago ai_ml intermediate
Authentication PHP 7.0+ 🧠 4
The process of verifying that a user is who they claim to be — typically by validating credentials (password, token, certificate) and establishing a session or issuing a signed token for subsequent requests.
2mo ago security intermediate
Authorisation PHP 7.0+ 🧠 1
The process of determining what an authenticated user is permitted to do — checking permissions, roles, or policies before allowing access to a resource or action.
2mo ago security intermediate
AI-Assisted Code Generation 🧠 5
Using LLMs to generate, complete, or refactor code — powerful for boilerplate and exploration but requiring review for correctness, security, and licence compliance.
3mo ago ai_ml intermediate
Diagram: API Abuse Prevention API Abuse Prevention PHP 5.0+
Techniques to detect and block bots, scrapers, credential stuffing, and automated abuse — beyond basic rate limiting to behavioural and intelligence-based controls.
3mo ago security advanced
API Authentication Patterns 🧠 1
Bearer tokens (JWT) for user sessions, API keys for machine-to-machine, mTLS for highest-security internal services — matching authentication method to the use case.
3mo ago api_design intermediate
API Key Lifecycle Management 🧠 4
Generating, distributing, rotating, and revoking API keys securely — covering scoping, expiry, audit logging, and emergency revocation procedures.
3mo ago security intermediate
Diagram: AI Security AI Security 🧠 2
Security risks specific to AI systems — prompt injection, training data poisoning, model extraction, and insecure output handling that differ from traditional application security.
3mo ago ai_ml advanced
allow_url_fopen / allow_url_include PHP 5.0+ 🧠 1
PHP INI settings that permit file functions and include/require to load remote URLs — a major SSRF and RFI enabler.
CWE-98 OWASP A5:2021
3mo ago php intermediate 9.8
Diagram: Allowlist vs Blocklist Allowlist vs Blocklist PHP 5.0+
Allowlists define what is permitted; blocklists define what is forbidden. Allowlists are always more secure.
3mo ago general beginner
Diagram: API Rate Limiting API Rate Limiting
Controlling how many requests a client can make in a time window — protecting against abuse, ensuring fair usage, and preventing accidental DoS from misbehaving clients.
3mo ago api_design intermediate
Diagram: Asymmetric Encryption Asymmetric Encryption PHP 5.0+ 🧠 1
A cryptographic system with a public key (shared freely) and a private key (kept secret) — data encrypted with the public key can only be decrypted with the private key.
3mo ago cryptography advanced
Diagram: Attack Surface Attack Surface PHP 5.0+
The sum of all points where an attacker can try to enter or extract data from a system.
3mo ago general intermediate
✓ schema.org compliant