Discover how to safeguard encryption keys and sensitive data using Azure Key Vault in this comprehensive conference talk. Learn to set up and configure Azure Key Vault, leveraging Hardware Security Modules (HSMs) for enhanced protection in regulated industries. Explore coding techniques, security patterns for cloud-based multi-tenant environments, and essential topics such as Azure AD authorization, application integration, local encryption key wrapping, flexible database routing with encrypted connection strings, and compliance audit logging. Gain practical knowledge to become a power user of Azure Key Vault, ensuring robust data protection in cloud environments across healthcare, financial, and insurance sectors.
Protecting Encryption Keys with Azure Key Vault
Overview
Syllabus
Protecting Encryption Keys with Azure Key Vault
The threat of data breaches Cryptography overview Key management options Introducing Azure Key Vault HSM Patterns and Practices
Don't Just Focus on Perimeter Security
Tamper proof Central key repository Can also store Certs (Private Keys)
Once a key goes in the Key Vault, it never comes out again
Keys vs Secrets
Secrets are versioned in the key Vault
Insurers Pll data encrypted using their own keys
Key Versioning
Password Protection
Salted Hash Passwords
Good practice to use different HMAC/ Vault Keys for different roles, it Admin, internal employee, customers etc.
Digital Signing
Data Breaches are Inevitable
Taught by
NDC Conferences
