Securing secrets — keys and passwords and so on needed to gain access to your critical applications, data and infrastructure — has never been more important or urgent. Exhibit A whopping https://thenewstack.io/unused-credentials-key-culprits-in-cloud-attacks-study-says/ reported a study released in May 2022 by Unit 42, the security research arm of https://www.paloaltonetworks.com/cloud-security?utm_content=inline-mention Unused credentials, the researchers said, are often used by hackers to access critical applications, data or infrastructure.
The other option for the Secrets Store CSI drive, she said, is where “ you could synchronize as a Kubernetes Secret.
The Vault Secrets Operator, Wang said, represents a third approach, one that bypasses file volume mounting and exclusively synchronizes to Kubernetes Secrets.
The new technology implements a controller that makes use of https://kubernetes.io/docs/concepts/extend-kubernetes/api-extension/custom-resources/ to natively synchronize Vault secrets to Kubernetes Secrets, without the need to run a sidecar container or use the Secrets Store CSI Driver.