Latest posts tagged with #SecretsManager on Bluesky
Secrets belong in a vault.
Never hardcode credentials. Use AWS Secrets Manager or a centralized vault, rotate keys automatically, and restrict GetSecretValue to scoped roles only. Log accesses.
#SecretsManagement #SecretsManager #Security
<s>because it's much safer, we have to give all our secrets to an almighty service. it has promised to be free of bugs and it will only hand out the secrets for legitimate reasons</s>
🤦🏻♂️ i continue tp be amazed by how our profession collectively dropped any logical thinking
#aws […]
![## FIPS Compliance
**FIPS** stands for [Federal Information Processing Standards][fips]. FIPS
are publicly announced standards developed by the [*U.S. National Institute of
Standards and Technology (**NIST**)*][nist] for use in computer systems by
non-military American government agencies and government contractors.
**FIPS** standards cover various aspects of information technology.
[FIPS 140-3][fips], in particular, defines standards of security for hardware
and software cryptographic modules used to protect sensitive information.
[fips]: https://csrc.nist.gov/pubs/fips/140-3/final "FIPS"
[nist]: https://www.nist.gov/ "NIST"
All **SPIKE** binaries are configured to be **FIPS 140-3**-enabled at **compile
time**.
We use `GOFIPS140=v1.0.0` build time settings, that sets the
`GODEBUG=fips140=on` flag which ensures that the Go runtime is in **FIPS 140-3**
mode.](https://cdn.bsky.app/img/feed_thumbnail/plain/did:plc:aneyww3viw5alu7nlzeuu5gc/bafkreiccfubqcjzws4c3gxfamn76xznxlqcklphflet5m7mkhdk57ucghu)
## FIPS Compliance **FIPS** stands for [Federal Information Processing Standards][fips]. FIPS are publicly announced standards developed by the [*U.S. National Institute of Standards and Technology (**NIST**)*][nist] for use in computer systems by non-military American government agencies and government contractors. **FIPS** standards cover various aspects of information technology. [FIPS 140-3][fips], in particular, defines standards of security for hardware and software cryptographic modules used to protect sensitive information. [fips]: https://csrc.nist.gov/pubs/fips/140-3/final "FIPS" [nist]: https://www.nist.gov/ "NIST" All **SPIKE** binaries are configured to be **FIPS 140-3**-enabled at **compile time**. We use `GOFIPS140=v1.0.0` build time settings, that sets the `GODEBUG=fips140=on` flag which ensures that the Go runtime is in **FIPS 140-3** mode.
I'm happy to announce that as of v0.4.3, SPIKE binaries are FIPS 140-3-enabled.
spike.ist
#Security #ZeroTrust #SecretsManager #SPIFFE #SPIRE #SPIKE
✍️ New blog post by Srinivasulu Paranduru
Delete All AWS Secrets created in Secrets Manager using Python3 + Boto3+Different Approaches
#boto3 #python3 #aws #secretsmanager
An image of padlocks which is used as the feature image of the attached blog post titled, "Utilising the Secrets Manager BatchGetSecretValue action".
Utilising the Secrets Manager BatchGetSecretValue action
chrisdunne.com/post/utilisi...
#aws #secretsmanager
Bitwarden Secrets Manager integrates with Ansible Playbook
www.helpnetsecurity.com/2024/02/27/b...
#Infosec #Security #Cybersecurity #CeptBiro #Bitwarden #SecretsManager #Ansible #Playbook
