Secretless & the End of Application Secrets as We Know Them - Brian Kelly - ESW #191

published 2 months ago by Security Weekly

Passwords, keys, and other secrets are becoming an outdated technique for applications to use. They are usually over-privileged, easy to steal, and very hard to handle securely. Developers frequently log them by accident or stash them in unsafe places. The Secretless pattern is a new way of architecting applications that guarantees that the application never handles the secrets it needs to access databases or other secure resources. Secretless architectures open up a whole set of opportunities for a new model of secure application development and governance. This segment is sponsored by CyberArk.   Show Notes: Visit to learn more about them! Visit for all the latest episodes! 

more episodes from Paul's Security Weekly TV