https://rezakaziz.github.io/post/Recent content in Posts on Rezak AZIZ | Cybersecurity and Infrastructure Engineer | PhDHugo -- gohugo.ioenFri, 10 Apr 2026 15:17:01 +0200https://rezakaziz.github.io/post/genai-security-excessive-agency/Fri, 10 Apr 2026 15:17:01 +0200https://rezakaziz.github.io/post/genai-security-excessive-agency/Learn how excessive agency in LLMs and AI agents creates new security risks. This article explains how over-permissioned systems, prompt injection, and hidden data exfiltration can bypass human-in-the-loop controls, and explores key mitigation strategies aligned with OWASP and modern AI security practices.https://rezakaziz.github.io/post/threat-model/Wed, 11 Mar 2026 16:30:16 +0100https://rezakaziz.github.io/post/threat-model/<p>Over time, while reviewing and reading cybersecurity and privacy papers, I notice something that bothers me more and more: <strong>some papers claim security or privacy guarantees without clearly defining a threat model</strong>.</p>https://rezakaziz.github.io/post/digital_twins/Tue, 27 Jan 2026 11:18:10 +0100https://rezakaziz.github.io/post/digital_twins/<p>In the context of my new role within the <a href="https://battwin.net">BATTwin project</a>, I have been thinking about how we observe systems and how far observation alone can take us. Working on reliability and industrial adoption quickly reveals a recurring pattern: we see problems, but often too late.</p>https://rezakaziz.github.io/post/why_i_created_this/Wed, 22 Jan 2025 12:13:44 +0100https://rezakaziz.github.io/post/why_i_created_this/<p>I created this website for a simple reason:<br> to have a place to think in public about systems I build, operate, or study.</p>