Homomorphic Encryption on Server Keys Implementation
After the implementation of homomorphic encryption, our client improved the company’s cyber defense and was able to track in real-time who and where is using a secret.
The client needed a secure server system to store and manage its secrets.
ScaleFocus’ security team was involved with the whole process of implementing the server for the client, configuration of homomorphically encrypted keys and its integration with the Domain controller of the company.
Enhanced cyber-protection on secrets around the company
Gaining an additional layer of defense
Eliminated more than 40 hardcoded/embedded secrets
Protect your sensitive information.
Business challenge story
One of the leading companies for software development in Bulgaria needed a server for storing and managing all types of secrets. Until this moment, the company’s employees were using 3rd party programs. However, this was no longer a safe option because of all the company’s sensitive data and the need for different levels of access.
Also, the solution had to be highly customizable and to offer a verity that no sensitive data will be stored in the automation server and none of it will be shown in the logs of the execution.
After choosing ScaleFocus as a trusted partner, our security experts analyzed the client’s needs. When we finished the initial assessment, we consulted the client that the implementation of the server must be complemented with the security hardening of the entire infrastructure, which would prevent data and information leakages. That was the only way to ensure that all the secrets are fully secured.
With that in mind, our team implemented a server for storing and managing all types of secrets in the customer’s company. The server was configured to provide homomorphically encrypted keys only to employees with the rights to access them. We established integration with the Domain controller of the company, for employees to be able to access the secret engine server with their corporate logins.
Our team developed a tailored plugin for the automation server so that the client can verify that no sensitive data is stored in the automation server and that none of it will be shown in the logs of the execution.
An extra layer of security was implemented, by ensuring that employees will have the right to use automation server only for a limited amount of time, via renewable homomorphic encrypted keys, which are fully trackable if needed.
ScaleFocus provided full documentation and training for the new server so that the client can use it for its employees - present and future.
With the implementation of the security server and all the additional customizations, there were well-defined benefits for the client:
- Eliminate more than 40 hardcoded/embedded secrets.
- Real-time ability to track who and where is using a secret.
- Enhanced cyber-protection on secrets around the company.
- Gaining an additional layer of defense.
- Increased ability to meet corporate security objectives by employees.
- Security hardening of the entire infrastructure, which would prevent from data and information leakages.
About the client
This success story belongs to a leading Bulgarian company in the field of software development.