secretd - another take on securely storing credentials
Tollef Fog Heen
https://linux.conf.au/schedule/30163/...
Essentially all machines need access to some secrets such as API keys or database passwords. This, combined with increased automation and cloud solutions requires automated tools for managing those secrets. They need to be stored securely, mechanisms for rotation need to be present and access need to be audited and controlled. Various solutions such as chef-vault, KeyWhiz and Vault already exist and solve parts of the problem. secretd is a new take on the problem and, in the author's opinion, solves some problems the other solutions don't.
This talk will both include an exploration of the problem space as well as a presentation of secretd: everything from language choice through tradeoffs made and lessons learned.
Смотрите видео secretd - another take on securely storing credentials онлайн без регистрации, длительностью часов минут секунд в хорошем качестве. Это видео добавил пользователь Linux.conf.au 2016 -- Geelong, Australia 06 Февраль 2016, не забудьте поделиться им ссылкой с друзьями и знакомыми, на нашем сайте его посмотрели 59 раз и оно понравилось людям.