Explore secure configuration management in cloud environments through this comprehensive LASCON conference talk. Delve into the challenges of protecting sensitive assets in DevOps environments, including database credentials, API tokens, and private keys. Learn about the importance of secure mechanisms for asset protection throughout the deployment cycle. Discover strategies for managing sensitive configuration data, including creation, renewal, and expiration processes. Examine access control techniques, usage audits, monitoring, and secure backups. Compare various market solutions for configuration data protection, understanding their strengths and weaknesses. Gain insights into different types of configuration secrets and their lifecycles. Explore best practices and common pitfalls in cloud DevOps security. Analyze specific solutions like Kubernetes secrets, Keywhiz, and Hashicorp Vault. Conclude with practical recommendations for implementing secure configuration management in cloud environments.
Overview
Syllabus
Introduction
Agenda
Expectations
Configuration Management
Secret Management
Secret Manager
Ansible
Taught by
LASCON
