Open Source Security Best Practices for Developers, Contributors, and Maintainers | The Open Source Show

Posted on Posted in aft-oss

Armon Dadgar (@armon), HashiCorp CTO and co-founder, and Aaron Schlesinger (@arschles) talk about how and why HashiCorp Vault is a security and open source product: two things traditionally considered at odds.

You’ll learn how to avoid secret sprawl and protect your apps’ data, ways for contributors and maintainers to enhance the security of any project, and why you should trust no one (including yourself).

[01:43] – What is secret sprawl and how do we avoid it?

[03:17] – What is the 1,000 eyes principle?

[06:35] – The tripod approach

[08:47] – Additional resources

 

Learn More

Create a Free Azure Account

HashiCorp Vault on Azure

Using HashiCorp Vault with Azure Kubernetes Service

Learn more about HashiCorp Vault

Check out HashiCorp Learn 

Read HashiCorp Blog

Learn more about secret sprawl

 

  

Open Source Security Best Practices for Developers, Contributors, and Maintainers | The Open Source Show
Source: MSDN Channel 9