Presentation is loading. Please wait.

Presentation is loading. Please wait.

Passw3rd Neil oreoshake. What is it? Cross-platform, cross-language password management for applications Keeps passwords out of.

Published byBrianne Bishop Modified over 9 years ago

Similar presentations

Presentation on theme: "Passw3rd Neil oreoshake. What is it? Cross-platform, cross-language password management for applications Keeps passwords out of."— Presentation transcript:

1 Passw3rd Neil Matatall @nilematotle oreoshake

2 What is it? Cross-platform, cross-language password management for applications Keeps passwords out of code and configuration files, but keeps them in encrypted files that can be checked into version control Keys for dev/test can be checked in, but prod keys must be protected

3 Give me the run down Generate keys: passw3rd –g generated keys in /Users/neil (creates.passw3rd-encryptionIV and.passw3rd-encryptionKey) Create a password file $ passw3rd –e file_name Enter the password: Wrote password to /Users/neil/file_name Verify the password can be retrieved $ passw3rd –d file_name The password is: asdf

4 Business model

5 Phase 3: Profit Need a password rotation? – Fine, just create a new password file for the affected accounts Need a new server? – Just make the keys part of your build script Need to rotate your key? – Trivial, decrypt with the old, encrypt with the new Wait, hold on a second you can’t change… oh yeah that sounds like a good idea…

6 Questions? https://github.com/oreoshake/passw3rd https://github.com/oreoshake/passw3rd_java http://rubygems.org/gems/passw3rd https://www.owasp.org/index.php/OWASP_Pas sw3rd_Project#tab=Project_About

Download ppt "Passw3rd Neil oreoshake. What is it? Cross-platform, cross-language password management for applications Keeps passwords out of."

Similar presentations

User Registration. Click on ‘Sign Up’ button. Enter Registration details and click on submit button.

User Registration. Click on ‘Sign Up’ button. Enter Registration details and click on submit button.
Building web applications on top of encrypted data using Mylar Presented by Tenglu Liang Tai Liu.

Building web applications on top of encrypted data using Mylar Presented by Tenglu Liang Tai Liu.
Hackers They can u Read the data files u Run the application programs u Modify some files which may cause damages Individuals who gain unauthorized access.

Hackers They can u Read the data files u Run the application programs u Modify some files which may cause damages Individuals who gain unauthorized access.
Apache Web Server Quick and Dirty Steve Gibbard for SANOG 16 (Originally by Joel Jaeggli for AfNOG 2007) ‏

Apache Web Server Quick and Dirty Steve Gibbard for SANOG 16 (Originally by Joel Jaeggli for AfNOG 2007) ‏
ACCESS CONTROL MANAGEMENT Project Progress (as of March 3) By: Poonam Gupta Sowmya Sugumaran.

ACCESS CONTROL MANAGEMENT Project Progress (as of March 3) By: Poonam Gupta Sowmya Sugumaran.
MITP 458 Application Layer Security By Techjocks.

MITP 458 Application Layer Security By Techjocks.
SSH : The Secure Shell By Rachana Maheswari CS265 Spring 2003.

SSH : The Secure Shell By Rachana Maheswari CS265 Spring 2003.
Microsoft Windows in Amazon Cloud Ishwor Thapa January 20, 2011.

Microsoft Windows in Amazon Cloud Ishwor Thapa January 20, 2011.
Tony BrettOUCS Course Code ZAB 9 February 2004 E-Mail Security – Encryption and Digital Signatures Tony Brett Oxford University Computing Services February.

Tony BrettOUCS Course Code ZAB 9 February Security – Encryption and Digital Signatures Tony Brett Oxford University Computing Services February.
Apache : Installation, Configuration, Basic Security Presented by, Sandeep K Thopucherela, ECE Department.

Apache : Installation, Configuration, Basic Security Presented by, Sandeep K Thopucherela, ECE Department.
How to Install Windows 7.

How to Install Windows 7.
Designing Security In Web Applications Andrew Tomkowiak 10/8/2013 UW-Platteville Software Engineering Department

Designing Security In Web Applications Andrew Tomkowiak 10/8/2013 UW-Platteville Software Engineering Department
T RIP W IRE Karthik Mohanasundaram Wright State University.

T RIP W IRE Karthik Mohanasundaram Wright State University.
Tutorial 8 Managing and Securing a Database. Objectives Filter data in a table and a form Save a filter as a query and apply the saved query as a filter.

Tutorial 8 Managing and Securing a Database. Objectives Filter data in a table and a form Save a filter as a query and apply the saved query as a filter.
Trusted Key Server OpenPKSD TKS Hironobu SUZUKI IWFST 2005 International Workshop on Future Software Technology.

Trusted Key Server OpenPKSD TKS Hironobu SUZUKI IWFST 2005 International Workshop on Future Software Technology.
Click Tools, then Account Settings. Click New… Click Microsoft Exchange, POP3,IMAP, or HTTP, then Next.

Click Tools, then Account Settings. Click New… Click Microsoft Exchange, POP3,IMAP, or HTTP, then Next.
Tutorial 10 Adding Spry Elements and Database Functionality Dreamweaver CS3 Tutorial 101.

Tutorial 10 Adding Spry Elements and Database Functionality Dreamweaver CS3 Tutorial 101.
Week #7 Objectives: Secure Windows 7 Desktop

Week #7 Objectives: Secure Windows 7 Desktop
IT 211 Project Integration and Deployment Lab #11.

IT 211 Project Integration and Deployment Lab #11.
Section 17.1 Add an audio file using HTML Create a form using HTML Add text boxes using HTML Add radio buttons and check boxes using HTML Add a pull-down.

Section 17.1 Add an audio file using HTML Create a form using HTML Add text boxes using HTML Add radio buttons and check boxes using HTML Add a pull-down.

Similar presentations

Ads by Google