Cloudflare on Thursday announced Secrets Store, a new solution designed to help developers and organizations securely store and manage secrets across the Cloudflare platform.
Any variable that needs to be stored securely and accessed by authorized users only is considered a secret, including credentials, cryptographic keys, tokens, and more.
By infosecbulletin
/ Tuesday , July 2 2024
The Brain Cipher ransomware group to release the decryption keys for Indonesia Terkoneksi on Wednesday. They said their attack aims...
Read More
By infosecbulletin
/ Tuesday , July 2 2024
"A critical vulnerability has been identified in the Google Authentication mechanism of the application. By manipulating the ID and email...
Read More
By infosecbulletin
/ Tuesday , July 2 2024
The Apache Software Foundation has found multiple security issues in the widely used Apache HTTP Server. These vulnerabilities could lead...
Read More
By infosecbulletin
/ Tuesday , July 2 2024
An executive from National Australia Bank reveals that the four major banks in the country face continuous attacks, as threat...
Read More
By infosecbulletin
/ Monday , July 1 2024
There is a security flaw (CVE-2024-20399) in Cisco NX-OS Software that lets an attacker with local access execute commands as...
Read More
By infosecbulletin
/ Monday , July 1 2024
Despite the limited manpower and various limitations, efforts are being made to keep the country's cyber space safe, said the...
Read More
By infosecbulletin
/ Sunday , June 30 2024
Microsoft will assign Common Vulnerabilities and Exposures (CVE) numbers to important vulnerabilities found and fixed in their cloud services. This...
Read More
By infosecbulletin
/ Sunday , June 30 2024
Indonesia's temporary National Data Center (PDN) was attacked by ransomware last Thursday, leading to delays in airport immigration services and...
Read More
By infosecbulletin
/ Saturday , June 29 2024
FortiGuard Labs found an attack that uses the CVE-2021-40444 vulnerability in Microsoft Office. This flaw lets attackers run harmful code...
Read More
By infosecbulletin
/ Saturday , June 29 2024
Starting November 1, 2024, Google will block websites that use certificates from Entrust. Google made this decision because Entrust has...
Read More
Failure to store secrets securely when building an application can lead to a data breach or the application’s compromise, and ensuring good secret management becomes essential.
The use of a secrets manager can streamline the development process, as it ensures the security of sensitive information and helps meet security best practices, while providing ease of use to allow developers to build efficiently.
With sensitive data residing across machines, in the cloud, or on local infrastructure, the new Secrets Store aims to make it easier for its customers to manage these secrets across Cloudflare’s services.
Currently in beta, the management solution will allow administrators to set specific rules on who can view, create, modify, or delete secrets, as well as to access audit logs for every secret-related event, to track the access and use of their sensitive information.
The web security company will also allow customers to rotate encryption keys on-demand or at the pace they consider fit for their security posture.
“The need for secrets management goes beyond Cloudflare. Customers have sensitive data that they manage everywhere – at their cloud provider, on their own infrastructure, across machines. Our plan is to make our Secrets Store a one-stop shop for all of our customer’s secrets,” Cloudflare notes.