Secret Manager overview

Available in VPC

These days, a lot of applications use databases to save data and operate by connecting with various other systems. Authentication is generally required for the organic connection between dispersed micro services. Authentication is a process to verify identification or source based on pre-shared and agreed-upon mutual information, and any ID, password, certificate, or user biometric information used for authentication are called credentials. All credentials used in applications must be protected safely.

Secret Manager helps save and manage any important confidential information (hereinafter secret), such as the password, personal key of the certificate, and certification token that are required for the operation of the application, safely. With Secret Manager, there is no need to hard-code secrets into the application code or implement complicated encryption methods in person.

Secrets are safely protected with keys strictly managed by Key Management Service. Also, the stability of the development and operation environments will be eminently improved, as there is no need to deploy applications for changing secrets with automated periodic secret rotation.

Secret Manager features

Secret Manager provides the following features:

Safe secret store

Secret Manager stores all secrets safely through the encryption connected with Key Management Service. Key Management Service complies with the latest security standards to protect secrets and manages sensitive information safely.

Access control

You can set access permissions in detail by each feature of a secret.

Automatic secret renewal

You can automatically rotate secrets periodically with Cloud Functions. Through this process, you can avoid the hassle of secret management, prevent security incidents, and respond to all kinds of regulations required for confidential information in highly restricted industries, such as finance and medicine.

Monitoring log

You can track recorded access and change histories of secrets with Resource Manager and Cloud Log Analysis. Through this process, you can enhance the transparency of the secret management and easily analyze the causes of security incidents.

Flexible definition of secret

There is no specific restriction on secrets that are manageable with Secret Manager. You can define secrets arbitrarily with any kind of format, from simple strings to passwords and certificate bodies.

About Secret Manager user guide

Cloud Security Watcher provides services in Korea Region. The content that users can view in each topic is as follows:

• Secret Manager overview: introduces Secret Manager and related resources helpful in using the service
• Secret Manager concept: introduces main concepts helpful in using the service
• Prerequisites for using Secret Manager: introduces precautions and pricing plan to use the service
• Secret Manager scenarios: introduces the entire process using the service
• Getting started with Secret Manager: explains how to subscribe to and unsubscribe from the service
• Using Secret Manager: introduces how to create and manage secret resources in the service
• Managing Secret Manager permissions: introduces how to manage Secret Manager permissions using Sub Account
• Secret Manager glossary: introduces main glossary and description helpful in using the service
• Secret Manager release notes: update history of the Secret Manager user guide

Secret Manager related resource

NAVER Cloud Platform provides a variety of related resources as well as user guides to help customers better understand the Secret Manager. If you are a developer or marketer in need of detailed information while you are considering adopting Secret Manager or establishing related policies, make good use of the following resources.

• Advanced understanding of Secret Manager and how to use the service
  • Secret Manager API reference: how to use API for developers
  • Introduction to pricing plan, features, and detailed functions: summary of pricing plan, features of service, and detailed functions
  • Latest service news: the latest news on Secret Manager service
  • Contact us: send direct inquiries in case of any unresolved questions that are not answered by the user guide

• User guides for connected services required for the use of Secret Manager
  • Sub Account user guide: how to use Sub Account, which helps the management of administration permissions for Secret Manager
  • Key Management Service user guide: how to use Key Management Service, which helps manage secret protection keys, and its pricing information
  • Cloud Log Analytics user guide: how to use Cloud Log Analytics, which helps to view secret history, and its pricing information