Skip to main content
Information Security

Questions tagged [secret-sharing]

Ask Question

The tag has no summary.

115 questions
Newest Active Bountied Unanswered
0 votes
1 answer
72 views

I have a React Native app and a Web Page. The React Native app has as secret, opens a web page in the browser, and needs to pass that secret to the browser. The browser will be using the secret on the ...
Evorlor's user avatar
  • 637
1 vote
1 answer
424 views

Tools like Ansible Vault, CNCF SOPS or Chezmoi make it easiy to keep secrets encrypted in version control, so that you can publish the repository, but still use the secrets inside when deploying. This ...
Tyler's user avatar
  • 13
2 votes
0 answers
426 views

CVE-2020-27838 describes that Keycloak has an open endpoint where it's possible to obtain client_secret information, as shown in the example below: /auth/realms/{realm}/clients-registrations/default/{...
Marcus's user avatar
  • 21
0 votes
1 answer
778 views

I see why it is obviously bad to store a secret key and client ID in the source code for a web application. However, how do you go about the alternative? Surely, that information has to be stored ...
BigMistake's user avatar
  • 123
5 votes
3 answers
5k views

I'm constantly exchanging credentials with my clients for things like database servers, cloud accounts, etc. Neither I nor my clients, have time to implement a sophisticated method for secure ...
Cristobal Sarome's user avatar
  • 151
0 votes
1 answer
202 views

I am trying integrate our service with SSO. I have generated the ClientID and ClientSecret. Is it a good security practice to store the ClientID and ClientSecret as a configmap? If not, what are the ...
warrior-oo7's user avatar
  • 73
1 vote
1 answer
222 views

Background: We have product development teams, where each team has one or two QA engineers. They run tests from their local machines. Here is what they require: Application credentials (a clientId ...
jmort253's user avatar
  • 201
1 vote
1 answer
311 views

Any application can use a TPM chip to securely create and store cryptographic keys. For example for Digital Rights Management (DRM) or for prevention of cheating in online games. However, how can a ...
Equinox's user avatar
  • 21
0 votes
1 answer
379 views

I've been doing a deep dive into how products like Web3Auth work under the hood and wonder if this is a viable approach to building applications where a user can have the convenience of using oAuth to ...
user3458571's user avatar
  • 1
1 vote
2 answers
285 views

I have a Python 3 program, and I’m having trouble finding an encryption method that will suit my needs. Suppose the program is on a thumb drive. I would give the thumb drive to someone else, and they ...
Cannabijoy's user avatar
  • 113
1 vote
2 answers
390 views

I'm currently implementing a PowerShell script to call the Sophos API (https://developer.sophos.com/intro). Write-Output "`nEnter the Sophos API key / client secret." $ClientSecret = Read-...
TheCyberWarden's user avatar
  • 11
1 vote
2 answers
571 views

I interact with some API's that use PKA and I'm looking for the safest / best-practice way to store my secret key. The approaches I know are for example: Create a 0500 access directory on my server ...
DevelJoe's user avatar
  • 161
0 votes
0 answers
405 views

So a company I work with currently is using a password management system that lets us retrieve the passwords for an application by providing a secure key to an API. Currently, the key is stored in ...
SpaceCowboy74's user avatar
  • 111
0 votes
0 answers
33 views

The thing that helped me to understand what is a "public key" was to parallel it with a door lock: The door lock is public in the sense that anyone can try to unlock it and the door key is ...
humble-learner's user avatar
  • 3
4 votes
2 answers
2k views

I'm building an application, part of which will allow businesses to store secrets. I'm looking at using CryptoJS (https://www.npmjs.com/package/crypto-js). This would encrypt everything on the client ...
vue-coder's user avatar
  • 143

15 30 50 per page
1
2 3 4 5
8