Name: Managing secrets in your cloud environment: AWS, GCP, and containers (and beyond)
Start: 2018-04-16T11:40:00-0700
End: 2018-04-16T12:10:00-0700

Website | Twitter | Facebook

Back To Schedule

Managing secrets in your cloud environment: AWS, GCP, and containers (and beyond)

Feedback form is now closed.

Applications often require access to sensitive data at build or run time, known as secrets. As a cloud application developer, you have many options to store these secrets, such as in code, environment variables, or purpose built solutions. We’ll discuss what a secret is, how secrets are stored today and some common mistakes in secret management, identity as it relates to accessing secrets, criteria to evaluate a secret management solution, and common solutions for containers in AWS, GCP, and Azure, and lastly, unsolved security risks.

Users should walk away from the talk as experts on secrets management in the cloud. How to improve their secret management practices, and understand their current security and usability tradeoffs.

Presenters

Evan Johnson

Senior Security Engineer, Cloudflare

Evan Johnson is a member of the Product Security team at Cloudflare. He loves diet pepsi, chicken nuggets, and golang. No relation to the prolific Linkedin content producer, Mike Johnson.

Maya Kaczorowski

Product Manager, Software Supply Chain Security, Tailscale

Maya is a Product Manager at Tailscale, providing secure networking for the long tail. She was mostly recently at GitHub in software supply chain security, and previously at Google working on container security, encryption at rest and encryption key management. Prior to Google, she... Read More →

Managing secrets in your cloud environment BSidesSF 2018 PUBLIC pdf

Monday April 16, 2018 11:40am - 12:10pm PDT
AMC - Theatre 7

Track 3, Talk

BSidesSF 2018

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Evan Johnson

Maya Kaczorowski