I am moving a containerized application to an Azure IoT Edge device. I used to use docker secrets to manage things like private keys, database passwords etc. Is there a way to manage these secrets from the cloud?
Asked
Active
Viewed 678 times
1 Answers
1
Your secrets can be managed as module twin properties from the cloud, and be "encrypted at rest" on your IoT Edge device - see https://github.com/Azure/iotedge/pull/1096 for more info/context.
kartben
- 2,485
- 21
- 24
-
But then your complete twin is encrypted ? Would it be possible to encrypt certain properties of the twin 'at rest' – Frederik Gheysels Mar 17 '20 at 11:41
-
Anyone that has access to your moduletwin in the cloud, can read those secrets. Isn't that a problem ? – Frederik Gheysels Jan 12 '21 at 19:14