Microservices and Secrets management - How to comply with security must-dos

Very nice and concise article with respect to secret management and what you need to consider when building microservices to meet with security requirements

Microservices and Secrets management - How to comply with security must-dos

The article highlights the following must-dos when considering a solution for secret management as part of your overall microservices deployment architecture

  • Secure storage of various type of secrets (API Token, Keys, Certificates, username & passwords)
  • Reliable API based access to secrets
  • Dynamic secret distribution for automated encryption and authentication of keys
  • Full Audit of access to secrets.
  • Multi-level role based access to secrets
  • Centralized revocation of secrets and redistribution


Comments

Popular posts from this blog

Basic Send Message to MQ with Java and IBM MQ JMS

Basic Receive Message to MQ with Java and IBM MQ JMS

Creating a simple Alert / Success Message with ASP.NET/VB using Bootstrap