Speaker
Sven Sternberger
(D)
Description
The talk will discuss the problems which arise
from managing and distributing secrets like
root passwords, keytabs, certificates
in a large site.
Secrets are needed in the process of installing and administrating
of compute and storage systems.
They should be accessible by authorized admins and
from the system they belong to. There should be a way to audit the
information to enforce the policies from your security department.
For example quality and lifetime of passwords.
In the presentation we will describe the workflows at DESY/Hamburg and
show systems we use today and their deficits.
Then we will describe our upcoming solution, and threats we still
see.
Author
Sven Sternberger
(D)