Our partner Pitchfork Solutions is an exhibitor at CeBit Australia 2019. They will be presenting and demoing the first release of secureable at their stand and during the conference pitchfest
authentication and authorizatiuon from multiple sources, secrets management and data encryption
secureable is built to provide seamless integration with multiple authentication backends. secureable can authenticate a user in a number of ways, such as username/password, Active Directory, TLS certificates and Radius. A user can be associated with more than one authentication account.
secureable works with OpenEdge PASOE (application server) to provide a single point of configuration for authenticating and authorizing access to applications.
secureable is available as Docker container stack (Rancher or Docker Compose) with documentation for installation setup and use.
Arbitrary key/value secrets can be stored in secureable, which are encrypted prior to writing them to persistent storage, so gaining access to the raw storage isn’t enough to access your secrets.
secureable can generate secrets on-demand for some systems, such as AWS or SQL databases. For example, when an application needs to access an S3 bucket, it asks secureable for credentials, and secureable will generate an AWS keypair with valid permissions on demand. After creating these dynamic secrets, secureable will also automatically revoke them after the lease is up.
secureable can encrypt and decrypt data without storing it. This allows security teams to define encryption parameters and developers to store encrypted data in a location such as SQL without having to design their own encryption methods.
All secrets in secureable have a lease associated with them. At the end of the lease, secureable will automatically revoke that secret. Clients are able to renew leases via built-in renew APIs.
secureable has built-in support for secret revocation. secureable can revoke not only single secrets, but a tree of secrets, for example all secrets read by a specific user, or all secrets of a particular type. Revocation assists in key rolling as well as locking down systems in the case of an intrusion.
For OpenEdge systems, using secureable is as simple as calling the sdk methods. The authentication methods return a Client Principal with user metadata to use as the developer wishes.
secureable will soon be available from nodeable and partners.
Contact nodeable Sales email@example.com for more details and to be kept up to date on product availability
We would love to give you a demo and explain how secureable can make your application safer to setup and use.