Secret Vault
Issue Token-based Temporary Key and Manage Lifecycle
Overview
-
Enhanced Security Environment
With Secret Vault, users no longer need to enter hard-coded authentication information to the application source code as it generates a token-based temporary key. This, in turn, helps respond to various security threats.
-
Managing Temporary Key Based on Lifecycle
Managing the lifecycle of temporary keys for security purposes becomes unnecessary as they are managed and rotated automatically based on the lifecycle rules configured.
-
Access to Various Resources
Using a token issued on Secret Vault, users can access resources within Samsung Cloud Platform as well as external resources in enhanced security environments (Including that of other cloud service providers and on-premises).
Service Architecture
- Secret Vault
- Token Management: Issue token, View token, Encrypt access key
- Temporary key Management: Issue temporary key, Managing lifecycle of temporary key, Delete temporary key
- IP-based access control
- Job history management
- VPC
- Virtual Server
- Storage
Key Features
-
Adding token-based authentication and storing encrypted access key
- issue tokens using an access key and support a feature that issues a temporary key with tokens
- Store securely by encrypting access key information (AES-256) -
Managing lifecycle of temporary keys
- Support automatic rotation and issuance of temporary key based on its lifecycle
- Sets the rotation cycle in hours (up to 36 hours)
- Immediately rotate temporary key (Manually) -
Access Control
- Enable IP-based access control of resources where user applications are running
- Control single IP and variable CIDR (Classless Inter-domain Routing) of container environment
(192.168.0.0/16, 192.168.11.0/24)
Pricing
-
- Billing
- Number of secrets issued
- Number of API calls made for temporary key issuance
Whether you’re looking for a specific business solution or just need some questions answered, we’re here to help