Episode 14: DevOps Secret Management

Episode 14 January 14, 2020 00:30:45
Episode 14: DevOps Secret Management
SilverLining IL
Episode 14: DevOps Secret Management
/

Hosted By

Moshe Ferber Ariel Munafo

Show Notes

Attendees

Guest: Oded Hareven

Guest title:  Founder & CEO

Company:  A-Key-Less

Abstract

Application Secret management is becoming one of the biggest challenges for application security. With cloud, CI/CD and micro services architecture we discover that we are using a growing number of encryption keys, API keys, SSH keys tokens and connection strings. In this episode we talk with Oded HarEven, Founder at A-Key-Less about the challenges of secret management and the way to build secure secret management solution.

Timing

0:00

Intro and introducing our guest

1:40

Application secret management  - defining what secret is, and what is secret management

6.00 

Challenges with encryption keys 

9:47  

How to handle application secret management and encryption keys - requirements and best practices

12.25

Zero trust in key management - what does it mean and how to implement it

20:10

The process of integrating keys with cloud platform

25:35

A-Key-Less state of the market approach

27.35

Summary and conclusions

Other Episodes

Episode 50

May 11, 2022 00:24:30
Episode Cover

SilverLining Episode 50: Building security workflow at scale

Guest: Ravid Circus Guest title: Co-Founder, Seemplicity Language: English   Abstract As organizations develop more software, and in faster cycles, greater responsibility is laid on security teams who have a full-stack responsibility for infrastructure, applications, IT services and many other aspects in the business. In this episode we spoke with Ravid Circus co-founder and CPO at Seemplicity to understand how security teams can efficiently scale their risk reduction efforts and interact with their counterparts productively by using digital workflows  for security operations. ...

Listen

Episode 51

June 22, 2022 00:33:12
Episode Cover

SilverLining Episode 51: Understanding 5G Networks

Guest: Niv David Guest title: Customer Cyber Security Director, Ericsson North America; Fellow & Lecturer, Yuval Ne'eman Workshop for Science, Technology and Security, Tel-Aviv University  Language: English   Abstract The 5th generation of cellular networks is not just an upgrade of previous generations such as LTE. 5G is changing the cellular networks infrastructure, deployment, orchestration, operations and security. 5G infrastructure, and Private Networks, blur the traditional distinction between IT, 3GPP, Wi-Fi and Cellular, providing incredible functionality, while creating new challenges. In this episode we spoke with Niv David, Customer Cyber security director at Ericsson North America, about the innovation of 5G networks and how it is changing the networking infrastructure and cloud usage. ...

Listen

Episode 20

August 03, 2020 00:52:42
Episode Cover

Episode 20: The Dark Side Of Privacy

Attendees Guest: Menny Barzilay Guest title: Partner @ Herzog Strategic, CTO, ICRC, Tel Aviv University Abstract For our 20’ish episode we spoke with a very special guest, the one and only - Menny Barzilay.  Menny is one of the most interesting speakers in the cyber landscape, he is an expert in simplifying complex concepts, integrating interesting stories and great examples into stimulating review of technology challenges we are facing as a community. In this episode we talk with Menny about Privacy - why it is so hard to define what exactly is privacy in the modern age, what people miss about the concepts of privacy and how this affects our everyday lives. This talk will make you laugh, will make you sad and definitely will make you think. We hope you will enjoy listening to it as much as we enjoyed recording it.  Comment: since this is more of a lecture and not a regular podcast, we didn't add our regular podcast timing. Enjoy! Timing: 0:00 introducing our guest 5:25 Privacy  ...

Listen