Start with Secret Vault.
Contact Us
- For more customer experience Case Studies
- More Samsung SDS products All Products
Secret Vault
Issue Token-based Temporary Key and Manage Lifecycle
Secret Vault removes the need for hard coding text-based security information when accessing Samsung Cloud Platform with Open API. A token-based temporary key is generated to provide access to Samsung Cloud Platform services and resources. In addition, managing the lifecycle of temporary keys helps create a robust security environment when utilizing API.
Features
-
Enhanced Security Environment
With Secret Vault, users no longer need to enter hard-coded authentication information to the application source code as it generates a token-based temporary key. This, in turn, helps respond to various security threats.
-
Managing Temporary Key Based on Lifecycle
Managing the lifecycle of temporary keys for security purposes becomes unnecessary as they are managed and rotated automatically based on the lifecycle rules configured.
-
Access to Various Resources
Using a token issued on Secret Vault, users can access resources within Samsung Cloud Platform as well as external resources in enhanced security environments (Including that of other cloud service providers and on-premises).
Architecture Diagram and Details
- Adding token-based authentication and storing encrypted access key
-
- issue tokens using an access key and support a feature that issues a temporary key with tokens
- Store securely by encrypting access key information (AES-256)
- Managing lifecycle of temporary keys
-
- Support automatic rotation and issuance of temporary key based on its lifecycle
- Sets the rotation cycle in hours (up to 36 hours)
- Immediately rotate temporary key (Manually)
- Access Control
-
- Enable IP-based access control of resources where user applications are running
- Control single IP and variable CIDR (Classless Inter-domain Routing) of container environment (192.168.0.0/16, 192.168.11.0/24)
Check Pricing by currency
Pricing Standard
- Secret Vault charges monthly fees based on the number of issued secrets held and the number of API calls to issue temporary keys.
(Unit: KRW, VAT excluded)
| Type | Unit | Rate |
|---|---|---|
| Secret monthly fee | Number of Secrets held (EA) | 8,000 |
| API (temporary key) calls fee | Number of API calls for temporary key issuance | 800 |
- The number of temporary key calls will not be carried over to the next month.
- For temporary key calls, the API call fee will be charged only when a new temporary key is issued.
Price calculation - example
- - Number of Secrets held : 2 (EA)
- Temporary key rotation cycle : 12 (hours) - 1) Secret monthly fee - [Number of Secrets held : 2 (EA)] * KRW 8,000 = KRW 16,000
- 2) API (temporary key) calls monthly fee - Assuming that API calls for issuing temporary keys are advanced twice a day (according to a 12-hour cycle), [2 times a day * 30 days] * KRW 800 = KRW 48,000
- ※ Even if the API call for issuing a temporary key is shorter than the temporary key exchange cycle, you will only be charged when a new temporary key is issued upon the arrival of the temporary key exchange cycle.
- 3) total monthly fee (KRW 64,000) = Secret monthly fee (KRW 16,000) + API (temporary key) calls monthly fee (KRW 48,000)