secureable

coming soon...

secureable

Our partner Pitchfork Solutions is an exhibitor at CeBit Australia 2019. They will be presenting and demoing the first release of secureable at their stand and during the conference pitchfest

authentication and authorizatiuon from multiple sources, secrets management and data encryption

Authentication

secureable is built to provide seamless integration with multiple authentication backends. secureable can authenticate a user in a number of ways, such as username/password, Active Directory, TLS certificates and Radius. A user can be associated with more than one authentication account.

OpenEdge PASOE integration

secureable works with OpenEdge PASOE (application server) to provide a single point of configuration for authenticating and authorizing access to applications.

Delivered in Docker containers

secureable is available as Docker container stack (Rancher or Docker Compose) with documentation for installation setup and use.

Secure Secret Storage

Arbitrary key/value secrets can be stored in secureable, which are encrypted prior to writing them to persistent storage, so gaining access to the raw storage isn’t enough to access your secrets.

Dynamic Secrets

secureable can generate secrets on-demand for some systems, such as AWS or SQL databases. For example, when an application needs to access an S3 bucket, it asks secureable for credentials, and secureable will generate an AWS keypair with valid permissions on demand. After creating these dynamic secrets, secureable will also automatically revoke them after the lease is up.

Encryption

secureable can encrypt and decrypt data without storing it. This allows security teams to define encryption parameters and developers to store encrypted data in a location such as SQL without having to design their own encryption methods.

Leasing and Renewal

All secrets in secureable have a lease associated with them. At the end of the lease, secureable will automatically revoke that secret. Clients are able to renew leases via built-in renew APIs.

Revocation

secureable has built-in support for secret revocation. secureable can revoke not only single secrets, but a tree of secrets, for example all secrets read by a specific user, or all secrets of a particular type. Revocation assists in key rolling as well as locking down systems in the case of an intrusion.

SDK

For OpenEdge systems, using secureable is as simple as calling the sdk methods. The authentication methods return a Client Principal with user metadata to use as the developer wishes.

secureable will soon be available from nodeable and partners.

Contact nodeable Sales sales@nodeable.io for more details and to be kept up to date on product availability

We would love to give you a demo and explain how secureable can make your application safer to setup and use.