Episode[39]: Managing Secrets
MP3•Laman utama episod
Manage episode 277511289 series 2594505
Kandungan disediakan oleh Nullplus.plus and Mohamed Luay , Ahmad Alfy. Semua kandungan podcast termasuk episod, grafik dan perihalan podcast dimuat naik dan disediakan terus oleh Nullplus.plus and Mohamed Luay , Ahmad Alfy atau rakan kongsi platform podcast mereka. Jika anda percaya seseorang menggunakan karya berhak cipta anda tanpa kebenaran anda, anda boleh mengikuti proses yang digariskan di sini https://ms.player.fm/legal.
Key phases of a secret’s lifecycle
- *Creation – Secrets can either be created manually by a user or generated automatically.
- *Storage – Secrets can be stored centrally or separately, using designated solutions (a PAM-based secrets management tool or password manager) or common approaches (in a text file, on a shared disk, email, etc.).
- *Rotation – Secrets can be changed or reset on a schedule, thus improving the overall protection of an organization’s infrastructure. Secrets rotation is one of the key requirements of many regulations and standards.
- *Revocation – Secrets can be revoked in the case of a cybersecurity incident. Thanks to this measure, organizations can prevent or limit the negative consequences of an incident and make sure that attackers can’t use compromised credentials for accessing your organization’s critical resources, systems, endpoints, or applications.
Available open source tools
Tools to encrypt data in git repositories
- blackbox By StackExchange
- git-secret
- git-crypt
Episode Picks:
67 episod