MySQL Security: Granting Secure Temporary Access with Vault

  • Posted on: 9 October 2017
  • By: jpsaman
Track: 
Security and Privacy
Day: 
Saturday
Author: 
Farid Nouri Neshat
Room: 
Track 2 (main)
Undefined
Paper: 

MySQL security is an interesting subject. In this session we'll show how to use Vault (https://www.vaultproject.io) to create a secrets store we can authenticate against using GitHub. On the other side, we'll demonstrate how we can use Vault to dynamically grant and revoke rights on a running MySQL Server. The end result allows us to not have to have a real MySQL user, but instead we first authenticate against Vault and then ask Vault for temporary access credentials to the MySQL instance of choice.

Time: 
12:00 - 13:00 hrs
field_vote: 
0
No votes yet