Overview
Syllabus
Protecting Encryption Keys with Azure Key Vault
The threat of data breaches Cryptography overview Key management options Introducing Azure Key Vault HSM Patterns and Practices
Don't Just Focus on Perimeter Security
Tamper proof Central key repository Can also store Certs (Private Keys)
Once a key goes in the Key Vault, it never comes out again
Keys vs Secrets
Secrets are versioned in the key Vault
Insurers Pll data encrypted using their own keys
Key Versioning
Password Protection
Salted Hash Passwords
Good practice to use different HMAC/ Vault Keys for different roles, it Admin, internal employee, customers etc.
Digital Signing
Data Breaches are Inevitable
Taught by
NDC Conferences