Google Cloud will get a Secret Supervisor
Google Cloud at the moment announced Secret Manager, a brand new software that helps its customers securely retailer their API keys, passwords, certificates and different knowledge. With this, Google Cloud is giving its customers a single software to handle this sort of knowledge and a centralized supply of reality, one thing that even refined enterprise organizations usually lack.
“Many applications require credentials to connect to a database, API keys to invoke a service, or certificates for authentication,” Google developer advocate Seth Vargo and product supervisor Matt Driscoll wrote in at the moment’s announcement. “Managing and securing access to these secrets is often complicated by secret sprawl, poor visibility, or lack of integrations.”
With Berglas, Google already provided an open-source command-line software for managing secrets and techniques. Secret Supervisor and Berglas will play effectively collectively and customers will be capable to transfer their secrets and techniques from the open-source software into Secret Supervisor and use Berglas to create and entry secrets and techniques from the cloud-based software as effectively.
With KMS, Google additionally affords a totally managed key administration system (as do Google Cloud’s opponents). The 2 instruments are very a lot complementary. As Google notes, KMS doesn’t really retailer the secrets and techniques — it encrypts the secrets and techniques you retailer elsewhere. Secret Supervisor offers a strategy to simply retailer (and handle) these secrets and techniques in Google Cloud.
Secret Supervisor contains the required instruments for managing secret variations and audit logging, for instance. Secrets and techniques in Secret Supervisor are additionally project-based international assets, the corporate stresses, whereas competing instruments usually handle secrets and techniques on a regional foundation.
The brand new software is now in beta and out there to all Google Cloud prospects.