The life cycle and distribution of secrets must be managed safely and securely. Secrets Management aims to shift this important responsibility to the platform where it can be implemented and audited in one place rather than many.
Secrets Management works in conjunction with secrets repositories to securely source and deliver secrets on demand and just-in-time to applications and services.
- Can be built with workflow-orchestration but must be treated with great care
- Should have additional security scrutiny applied beyond other non-secret artifact delivery tooling
- Often provides the ability to promote secrets between environments, distribute, roll and revoke secrets