Home > Mobile >  Azure best practice
Azure best practice

Time:10-19

What is the best practice with windows Azure key vault. Is it a good practice to extract keys within the application every time we make use of it or it is good to set them in the OS environment variable.

CodePudding user response:

It depends on what key. You should not be extracting master key, but the associated data keys to encrypt and decrypt.

CodePudding user response:

There is no hard-fast rule here but you should consider the rotation of keys. If you need the keys to be rotated often you should consider pulling from Key Vault every time.

There are other times in makes more sense to pull once and cache locally. This could include your network latency being an issue so it's more cost-effective to pull once then cache. In this scenario, you will need some mechanism in place to force a new pull if/when the key is rotated.

Page link:https//www.codepudding.com/Mobile/157646.html

Prev:Is there any security vulnerabilities in running a local python file with a connection string to a d
Next:configure NGINX as a simple 2 ARM load balancer
  • Related

About Us:  Contact Us      Terms of Service       Privacy Policy

Copyright © 2010-2023,Powered By CodePudding