[英]How safe is storing my role service package in Azure blob storage?
Azure Management Portal allows deploying a service from a service package earlier uploaded to Azure blob storage. Azure 管理门户允许从之前上传到 Azure blob 存储的服务 package 部署服务。 This looks very convenient but kind of paranoid - what if some third party accesses the blob storage and retrieves the executables comprising my role?
这看起来很方便,但有点偏执——如果某些第三方访问 blob 存储并检索构成我的角色的可执行文件怎么办?
How safe is storing role service package in Azure blob storage?在 Azure blob 存储中存储角色服务 package 的安全性如何? What are better alternatives if any?
如果有的话,有什么更好的选择?
There are a few attack vectors to get to blob storage and you are in control of all of them, so it is up to you to secure the access.有一些攻击向量可以访问 blob 存储,并且您可以控制所有这些向量,因此您可以确保访问安全。 Specifically:
具体来说:
That's it.而已。 Unless there is an actual security issue with blob storage service (that we currently don't know about), those are the only ways to get access.
除非 blob 存储服务存在实际的安全问题(我们目前不知道),否则这些是获得访问权限的唯一方法。 If you secure it, it is pretty safe and I don't think there is a better alternative to store a package in Windows Azure.
如果你保护它,它是非常安全的,我认为没有更好的选择来将 package 存储在 Windows Azure 中。
One last thing: the package you upload by default is actually encrypted.最后一件事:您默认上传的 package 实际上是加密的。 Even if someone downloaded it, the only thing that can decrypt it is the fabric controller.
即使有人下载了它,唯一能解密它的就是面料 controller。 I think you have other issues you should worry more about.
我认为您还有其他问题应该更多地担心。
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.