Does your app handle secrets? Most likely your app’s ecosystem needs to handle passwords/credentials, tokens, API and access keys, cryptographic keys, certificates, and/or sensitive user data. If those get inappropriately disclosed, there can be a huge impact on you and your users. To help, you may want to read our new primer on secrets in apps, with background and strategies for managing the associated security risks. You can read it here on the Secure by Design Education Hub.
Related topics
| Topic | Replies | Views | Activity | |
|---|---|---|---|---|
| New article landed: Securing Secrets in Apps: Storage and management | 0 | 14 | May 24, 2024 | |
| Safely Handling Credentials, Keys, and Tokens for External Resources (new article) | 0 | 7 | June 13, 2024 | |
| Securing Secrets in CI/CD Pipelines (new article) | 0 | 10 | August 2, 2024 | |
| New article available: Safely Handling Secrets in Kubernetes Clusters | 0 | 5 | July 2, 2024 | |
| New article landed: Creating and Running Secure by Design Software | 0 | 23 | March 5, 2024 |