Secrets as Code

Secrets management has come a long way - from simple credentials kept in code to KMS tools to privileged access management and then secrets vaults. Digital transformation is still a thing in 2021, and since we’re all using multiple clouds, Kubernetes, and moving towards microservices and serverless architectures, the right tool for the right job is that much more important, especially when it comes to securing your infrastructure and applications. This talk will discuss some of the history of the movement toward best practices in password, token, key, and credential management, including HSMs, KMSs, PAMs, and PKI management. Finally, how secrets management became a MUST for DevOps and security teams of all enterprises, and why the right tool needs to be cloud agnostic, cloud-native, integrable with any DevOps pipelines and infinitely scalable.

Kubernetes Secrets - The Good, The Bad, and The Ugly - Akeyless

Stopping the Hassle of SSH keys by using SSH certificates - Community Summit ...

Streamline CI/CD with Just-in-Time Access

AddWeb Solution Pvt. Ltd.

“Kubernetes Secrets,” K8s solution for storing application's secrets, does not support segregation when it comes to pods and namespaces, meaning: any pod or namespace may access the entire secrets database on your cluster. As a result, for security reasons, you should not place 2 applications on the same cluster. In this session you would learn the way to enhance Kubernetes architecture in order to overcome this problem, plus get more bonuses as audit and compliance.

IBM Secret Key management protoco

gori4

Recipe for good secrets management

Kevin Gilpin

Hardening Kubernetes Cluster

Knoldus Inc.

Containers deployments in Kubernetes clusters create both familiar and new security challenges. Given the ephemeral nature of containers, the speed and agility goals of microservices architecture, a preliminary detection of potential risks, and early discovery of viable threats yield the best security outcomes. Successfully addressing the Kubernetes security challenges requires integrating security into each phase of the container lifecycle: build, deploy, and run. This webinar will throw light on how to: * Stay on top of ongoing Kubernetes hygiene by hardening your nodes, employing best practices * Implement role-based access control of users * Manage Kubernetes Secrets * Thwart an attack, with a live demo

Centralize and Simplify Secrets Management for Red Hat OpenShift Container En...

DevOps.com

The integration between Red Hat OpenShift and CyberArk Conjur Enterprise enables development organizations to both strengthen and simplify secrets management security for application containers. The approach utilizes native capabilities, including authenticators, to improve an organization’s overall security posture and reduce risk. This is accomplished without disrupting operations or impairing development velocity. In this webinar, we’ll demo the new capabilities and explain the benefits of using CyberArk Conjur as a centralized solution for managing secrets in OpenShift container environments. Learn how to: Enable segregation of duties – to free developers from most security concerns, while giving security the tools they need to ensure the security requirements are met Simplify how developers secure container environments Enable security teams to enforce policy-based access controls with strong authentication Free developers and operations teams from the burdens of meeting audit requirements

Zero trust Architecture

Using Puppet With A Secrets Server

CyberArk Impact 2017 - REST for the Rest of Us

Joe Garcia

Are you a Vault Admin drowning in work? Unfortunately, the great minds at CyberArk haven’t figured out a way to clone you… yet. In the meantime, there’s the REST API to help you along the way! Come POST up in a chair and GET your paper and pencils ready…our REST expert is about to PUT knowledge in your brain and DELETE your old way of thinking! After this session, you’ll leave with a better understanding of our REST API, how to easily combine multiple methods to create simple scripts, and tips on how to use Postman to your benefit.

Global Azure Bootcamp 2017 - Azure Key Vault

Alberto Diaz Martin

Shifting security left simplifying security for k8s open shift environments

LibbySchulze

Secret Management with Hashicorp Vault and Consul on Kubernetes

An Nguyen

Delivering transparent data_encryption_while_centrally_managing_keys_eskm-blo...

Bloombase

Securing sensitive data with Azure Key Vault

As a developer you often have to use & store a lot of sensitive data going from service credentials to connection strings or even encryption keys. But how do I store these in a secure way? How do I know who has access to them and how do I prevent people from copying them and abusing them? On the other hand, SaaS customers have no clue how you store their sensitive data and how they use it. How can they monitor that? How can they revoke your access easily? Watch the recording here - http://azug.be/2015-05-05---securing-sensitive-data-with-azure-key-vault

Security For Humans

Jamie Bowser - A Touch(ID) of iOS Security

centralohioissa

As mobile devices become more and more prevalent in our lives, the clash between security and usability moves to the forefront. Apple integrated TouchID into its main mobile devices products (iPhones/iPads). In Apple’s controlled fashion, access to the TouchID was unavailable at first and has been expanded over subsequent releases. With this expansion is a new world of authentication possible? In this talk, we will explore the architecture of TouchID and the how Apple is pushing biometrics into the forefront of consumer-based products. As companies start embracing biometrics, there are standard client-side authentication risks and TouchID Implementations risk. We will explore the architecture and common implementations, to understand possible hidden risks, and how to strengthen the implementations.

Cryptzone: The Software-Defined Perimeter

Operational Complexity: The Biggest Security Threat to Your AWS Environment

Azure key vault

Rahul Nath

ITProceed 2015 - Securing Sensitive Data with Azure Key Vault

Security has become more and more important as we move to the cloud and countries & companies are being hacked – remember the Sony hack? But how do we securely store sensitive data such as connection strings to our databases? Where do we store our encryption keys? Can I share them with my customers? How do I prevent abuse of my secrets and block them from doing so? That’s what this session is all about – I will introduce you to the concepts of Microsoft Azure Key Vault where you can use this as it allows you to securely store keys, credentials and other secrets in the cloud. We will also have a look at how it enables us to store encryption keys for SQL Server TDE and how it can help you safeguard your cloud solutions even more.

CSA Presentation - Software Defined Perimeter

Vishwas Manral

Continuous Delivery, Continuous Integration

Today’s cutting edge companies have software release cycles measured in days instead of months. This agility is enabled by the DevOps practice of continuous delivery, which automates building, testing, and deploying all code changes. This automation helps you catch bugs sooner and accelerates developer productivity. In this session, we’ll share best practices (including ones followed internally at Amazon) and how you can bring them to your company by using open source and AWS services. Speaker: Raghuraman Balachandran, Solutions Architect, Amazon India

Making Security Agile

Oleg Gryb

Security process should be integrated with SDLC well to be successful. While many companies have already moved from Waterfall to Agile methodologies security remains behind more often than not. We have demonstrated in our presentation how security can move to agile by utilizing open source tools, customizing them to meet our needs and to implement a continuos security testing using dynamic scanners as well as manual testing. It’s very important also to assure that false positives are not fed to the developers bug tracking systems and to assign a severity for each finding correctly. To make it happen we import all our findings to a security dashboard and review them before exporting to a bug tracking system.

What's hot

Kubernetes Secrets Management - Securing Your Production Environment

AddWeb Solution Pvt. Ltd.

IBM Secret Key management protoco

gori4

Recipe for good secrets management

Kevin Gilpin

Hardening Kubernetes Cluster

Knoldus Inc.

Centralize and Simplify Secrets Management for Red Hat OpenShift Container En...

DevOps.com

Zero trust Architecture

Using Puppet With A Secrets Server

CyberArk Impact 2017 - REST for the Rest of Us

Joe Garcia

Global Azure Bootcamp 2017 - Azure Key Vault

Alberto Diaz Martin

Shifting security left simplifying security for k8s open shift environments

LibbySchulze

Secret Management with Hashicorp Vault and Consul on Kubernetes

An Nguyen

Delivering transparent data_encryption_while_centrally_managing_keys_eskm-blo...

Bloombase

Securing sensitive data with Azure Key Vault

Security For Humans

Jamie Bowser - A Touch(ID) of iOS Security

centralohioissa

Cryptzone: The Software-Defined Perimeter

Operational Complexity: The Biggest Security Threat to Your AWS Environment

Azure key vault

Rahul Nath

ITProceed 2015 - Securing Sensitive Data with Azure Key Vault

CSA Presentation - Software Defined Perimeter

Vishwas Manral

What's hot (20)

Kubernetes Secrets Management - Securing Your Production Environment

IBM Secret Key management protoco

Recipe for good secrets management

Hardening Kubernetes Cluster

Centralize and Simplify Secrets Management for Red Hat OpenShift Container En...

Zero trust Architecture

Using Puppet With A Secrets Server

CyberArk Impact 2017 - REST for the Rest of Us

Global Azure Bootcamp 2017 - Azure Key Vault

Shifting security left simplifying security for k8s open shift environments

Secret Management with Hashicorp Vault and Consul on Kubernetes

Delivering transparent data_encryption_while_centrally_managing_keys_eskm-blo...

Securing sensitive data with Azure Key Vault

Security For Humans

Jamie Bowser - A Touch(ID) of iOS Security

Cryptzone: The Software-Defined Perimeter

Operational Complexity: The Biggest Security Threat to Your AWS Environment

Azure key vault

ITProceed 2015 - Securing Sensitive Data with Azure Key Vault

CSA Presentation - Software Defined Perimeter

Similar to Secrets as Code

Continuous Delivery, Continuous Integration

Making Security Agile

Oleg Gryb

Java & The Android Stack: A Security Analysis

Pragati Rai

AWS re:Invent 2016: DevOps on AWS: Accelerating Software Delivery with the AW...

Today’s cutting edge companies have software release cycles measured in days instead of months. This agility is enabled by the DevOps practice of continuous delivery, which automates building, testing, and deploying all code changes. This automation helps you catch bugs sooner and accelerates developer productivity. In this session, we’ll share the processes followed by Amazon engineers and discuss how you can bring them to your company by using AWS CodePipeline and AWS CodeDeploy, services inspired by Amazon's internal developer tools and DevOps culture.

[Wroclaw #9] The purge - dealing with secrets in Opera Software

OWASP

Delivering Infrastructure and Security Policy as Code with Puppet and CyberAr...

Claire Priester Papas

Puppet is Talking Tech, and we’re inviting you to join us! In our new webinar series, we’ll host discussions about exciting technology solutions that are driving the industry forward. Our technology experts will dive deep into topics that matter and will bring customers, partners and other leaders to the table to give you answers to your technology questions. Today - we pres Delivering Infrastructure and Security Policy as Code with Puppet and CyberArk Conjur Date: Wednesday, 8 November 2017 Time: 8:00 - 9:00 a.m. PT Safeguard secrets and deliver applications faster Puppet empowers organizations to rapidly deliver value by enabling infrastructure-as-code. Learn how CyberArk Conjur delivers security-policy-as-code, enables your organization to provide better security, and increases developer and operations autonomy. Join us and learn how to automatically apply secrets-management best practices to the DevOps toolchain using Puppet Enterprise and CyberArk Conjur.

DevOps on AWS: Accelerating Software Delivery with the AWS Developer Tools