Opinionless Enforcement of Opinions on Operational Secrets
Security BSides San Francisco via YouTube
Overview
Explore a 30-minute conference talk from Security BSides San Francisco that delves into the challenges of managing operational secrets in large-scale development environments. Learn about the creation of an internal "Secret Key Service" and the subsequent development of an open-source tool called aomi. Discover how this tool addresses the potential chaos of unrestricted access to secret storage systems like Vault by implementing a data-driven approach to secret provisioning. Gain insights into the key concepts of data-driven secret management and the extraction of secrets in a format compatible with existing UNIX-like applications. Understand how aomi aims to be an unopinionated tool that can still enforce rigorous organizational policies on secret management.
Syllabus
BSidesSF 2017 - Opinionless Enforcement of Opinions on Operational Secrets (Jonathan Freedman)
Taught by
Security BSides San Francisco