为什么Azure Key Vault是安全的? [英] Why is Azure Key Vault secure?

问题描述

Azure Key Vault为什么或如何安全?我需要在服务器上存储密钥URI，客户端ID和客户端密钥，因此，如果任何人授予对托管应用程序的服务器的访问权限，他将能够访问密钥库中存储的密钥和密钥.这意味着将它们存储在服务器上同样安全，对吗?

Why or how is Azure Key Vault secure? I need to store key URI and Client Id and Client Secret on the server, so if anyone grants access to the server on which application is hosted, he'll be able to access keys and secrets stored in the Key Vault. Which means it is just as secure to store them on the server, right?

推荐答案

您误解了Key Vault.从某种意义上讲，密钥库是安全的，因为没有任何东西可以通过公共互联网传输，与密钥库和Azure资源的所有通信都通过Azure骨干网进行，因此默认情况下它们是安全的(如果您认为Azure是安全的，那么是安全的).
同样，使用Key Vault，您可以允许部署某些证书，而无需查看(或复制)它们.基本上，它支持RBAC.

You are misunderstanding the Key Vault. Key vault is secure in a sense that nothing gets transmitted over the public internet, all the communications with Key Vault and Azure Resources go through the Azure Backbone, so they are secure by default (well, if you believe Azure is secure).
Also, with Key Vault you can allow for deploying certain certificates without having the ability to look at them (or copy them). Basically, it supports RBAC.

这篇关于为什么Azure Key Vault是安全的?的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！