Episode[39]: Managing Secrets

57:48
 
مشاركة
 

Manage episode 277511289 series 2594505
بواسطة Nullplus.plus and Mohamed Luay , Ahmad Alfy، اكتشفه Player FM ومجتمعنا ـ حقوق الطبع والنشر مملوكة للناشر وليس لـPlayer FM، والصوت يبث مباشرة من خوادمه. اضغط زر الاشتراك لمتابعة التحديثات في Player FM، أو ألصق رابط التغذية الراجعة في أي تطبيق بودكاست آخر.

Key phases of a secret’s lifecycle

  • *Creation – Secrets can either be created manually by a user or generated automatically.
  • *Storage – Secrets can be stored centrally or separately, using designated solutions (a PAM-based secrets management tool or password manager) or common approaches (in a text file, on a shared disk, email, etc.).
  • *Rotation – Secrets can be changed or reset on a schedule, thus improving the overall protection of an organization’s infrastructure. Secrets rotation is one of the key requirements of many regulations and standards.
  • *Revocation – Secrets can be revoked in the case of a cybersecurity incident. Thanks to this measure, organizations can prevent or limit the negative consequences of an incident and make sure that attackers can’t use compromised credentials for accessing your organization’s critical resources, systems, endpoints, or applications.

Available open source tools

Tools to encrypt data in git repositories

Episode Picks:

61 حلقات