Remove developers’ shameful secrets or simply remove shameful developers…

fabian-lim
23 Feb 2018
13:00 - 15:00
Workshop | Rosewood Room

Remove developers’ shameful secrets or simply remove shameful developers…

I started out with one goal: to eliminate hard coded secrets in code repository. For this workshop, we will do a short hands-on demo using Vault – one of many secret management tools – to automate security into CICD, building on current workflows. The workshop will also explain some concepts around secret management and technical ways to deal with the problems in achieving the one goal.

In this hands-on workshops, attendees will learn how to:

  1. Set up a clean development environment without Vault
  2. Integrate Vault into the pipeline with build tools like Jenkins and how it can interact with applications
  3. Bonus, if we have time, we will explore other cool features of Vault to strengthen other layers of security (SSH CA, PKI).

Watch this repository for setup instructions: https://github.com/3jmaster/devseccon2018

This website uses cookies to ensure you get the best experience on our website More info

The cookie settings on this website are set to "allow cookies" to give you the best browsing experience possible. If you continue to use this website without changing your cookie settings or you click "Accept" below then you are consenting to this.

Close