Azure Key Vault 机密查询
[英]Azure Key Vault Secrets Query
问题描述
I had a couple of questions around Azure Key Vault where I needed some technical assistance: The link https://docs.microsoft.com/en-us/azure/key-vault/general/overview states that "Secrets and keys are safeguarded by Azure, using industry-standard algorithms, key lengths, and hardware security modules (HSMs). The HSMs used are Federal Information Processing Standards (FIPS) 140-2 Level 2 validated" .
我有几个关于 Azure Key Vault 的问题,我需要一些技术帮助:链接https://docs.microsoft.com/en-us/azure/key-vault/general/overview指出“机密和密钥受到保护由 Azure,使用行业标准算法、密钥长度和硬件安全模块 (HSM)。使用的 HSM 已通过联邦信息处理标准 (FIPS) 140-2 2 级验证” 。
I wanted to confirm whether this was true for secrets as much as they were true for keys.我想确认这是否适用于秘密,就像它们适用于密钥一样。 The reason for this is secrets have to leave the HSM and be transferred to the end application which needs to use them.这样做的原因是机密必须离开 HSM 并传输到需要使用它们的最终应用程序。
The second was around the size of the secrets itself.第二个大约是秘密本身的大小。 I have seen conflicting information on secrets size which state its either 10 KB and 25 KB max size per secret.我已经看到有关机密大小的相互矛盾的信息,其中说明每个机密的最大大小为 10 KB 和 25 KB。 What is the best way to validate this?验证这一点的最佳方法是什么?
Any help that you can provide would be much appreciated.您能提供的任何帮助将不胜感激。
Thanks!谢谢!
1 个解决方案
解决方案1
1 2020-09-03 00:26:16
Secrets itself are protected by HSM by being encrypted by HSM keys (Encryption at Rest) - I hope this helps. Secrets 本身由 HSM 保护,通过 HSM 密钥加密(静态加密) - 我希望这会有所帮助。
25k is max size per secrets. 25k 是每个秘密的最大大小。
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.