Episode[39]: Managing Secrets
MP3•Episoder hjem
Manage episode 277511289 series 2594505
Innhold levert av Nullplus.plus and Mohamed Luay , Ahmad Alfy. Alt podcastinnhold, inkludert episoder, grafikk og podcastbeskrivelser, lastes opp og leveres direkte av Nullplus.plus and Mohamed Luay , Ahmad Alfy eller deres podcastplattformpartner. Hvis du tror at noen bruker det opphavsrettsbeskyttede verket ditt uten din tillatelse, kan du følge prosessen skissert her https://no.player.fm/legal.
Key phases of a secret’s lifecycle
- *Creation – Secrets can either be created manually by a user or generated automatically.
- *Storage – Secrets can be stored centrally or separately, using designated solutions (a PAM-based secrets management tool or password manager) or common approaches (in a text file, on a shared disk, email, etc.).
- *Rotation – Secrets can be changed or reset on a schedule, thus improving the overall protection of an organization’s infrastructure. Secrets rotation is one of the key requirements of many regulations and standards.
- *Revocation – Secrets can be revoked in the case of a cybersecurity incident. Thanks to this measure, organizations can prevent or limit the negative consequences of an incident and make sure that attackers can’t use compromised credentials for accessing your organization’s critical resources, systems, endpoints, or applications.
Available open source tools
Tools to encrypt data in git repositories
- blackbox By StackExchange
- git-secret
- git-crypt
Episode Picks:
67 episoder