This past month, we’ve covered four different crypto tools for devops, how developers can use them, and potential drawbacks intrinsic to each approach.
Credstash is a fantastic tool that allows sharing secrets between developers and servers or even among development teams.
The key advantage of using git-crypt is that your protected data stays alongside the code that uses it. You don’t need to configure or manage additional infrastructure.
HashiCorp Vault is a tool for managing much more than simple secrets. Vault also supports revoking keys, regenerating credentials, auditing access, and “leasing” credentials for a limited period of time.
The Java KeyStore allows developers to store keys and credentials needed from an application-level securely from within the JDK.