Episode 14: DevOps Secret Management

Episode 14 January 14, 2020 00:30:45
Episode 14: DevOps Secret Management
SilverLining IL
Episode 14: DevOps Secret Management

Jan 14 2020 | 00:30:45

/

Hosted By

Moshe Ferber Ariel Munafo

Show Notes

Attendees

Guest: Oded Hareven

Guest title:  Founder & CEO

Company:  A-Key-Less

Abstract

Application Secret management is becoming one of the biggest challenges for application security. With cloud, CI/CD and micro services architecture we discover that we are using a growing number of encryption keys, API keys, SSH keys tokens and connection strings. In this episode we talk with Oded HarEven, Founder at A-Key-Less about the challenges of secret management and the way to build secure secret management solution.

Timing

0:00

Intro and introducing our guest

1:40

Application secret management  - defining what secret is, and what is secret management

6.00 

Challenges with encryption keys 

9:47  

How to handle application secret management and encryption keys - requirements and best practices

12.25

Zero trust in key management - what does it mean and how to implement it

20:10

The process of integrating keys with cloud platform

25:35

A-Key-Less state of the market approach

27.35

Summary and conclusions

Other Episodes

Episode 9

October 29, 2019 00:35:01
Episode Cover

Episode 9: Challenges With Cloud Management Logs

Attendees Guest: Shira Shamban Guest title:  Cloud Security Company:  Check Point (Dome9) Cloud providers has invested heavily in adding visibility, monitoring and logging capabilities...

Listen

Episode 41

August 25, 2021 00:40:02
Episode Cover

SilverLining Episode 41: Securing ci/cd pipeline using policy as code

Guest: Eran Leib (vp product), Maor Goldberg (CEO) Guest Title:  Founders at Apolicy (a sysdig company) Abstract: Infrastructure and policy as code is one...

Listen

Episode 5

July 25, 2019 00:53:07
Episode Cover

Episode 5: Guard Rails And Not Gates – How R&D And Security Should Co-Exist Audio Player

Attendees Guest: Guy Flechter Guest title: CISO Company: AppFlayer Abstract One of the biggest challenges facing software companies is how to make sure security...

Listen