7 Storing secrets

This chapter covers

Exploring different kinds of encryption
Securely storing configuration settings
Using the Secret Manager to store data
Using secure cloud storage options
Protecting data stored locally by a Blazor app

In 2020, it was discovered that a piece of software by IT company SolarWinds contained a back door that was abused by attackers. Part of the attack involved downloading a malicious software update. The password for the FTP server containing those updates was “solarwinds123” (at least, at some point in 2019). Famously, the CEO blamed it on “an intern.”

A security researcher found this password within a public GitHub repository of the company (see http://mng.bz/1oBj for background information on the attack and ...

Get ASP.NET Core Security now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

ASP.NET Core Security by Christian Wenz

7 Storing secrets

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly