With adequate secrets management, security professionals can safely and easily store sensitive digital credentials, including passwords, APIs and tokens, a must in today’s password-heavy cyber landscape.

Akeyless Security Ltd. aims to revolutionize how security professionals approach secret management with a vaultless platform, greatly decreasing the chance of a attackers gaining access to credentials, according to Oded Hareven (pictured), co-founder and chief executive officer at Akeyless.

“We basically created a third generation for a solution within the realm of secrets management, where secrets are sprawled away in the environments,” Hareven said. “In the last few years, we’ve had more and more of those credentials, certificates and keys. They’re sprawled within DevOps platforms, within configuration files and all of those.”

Hareven spoke with theCUBE industry analysts Savannah Peterson and John Furrier at KubeCon + CloudNativeCon NA, during an exclusive broadcast on theCUBE, SiliconANGLE Media’s livestreaming studio. They discussed the danger of “secrets sprawl” and how Akeyless’ vaultless approach revolutionizes secrets management. (*Disclosure below.)

Say goodbye to unsafe credential storage

Akeyless started with Distributed Fragments Cryptography, which enables the company to perform cryptographic operations using fragments of encryption keys without ever combining them. These fragments are stored on different cloud providers.

“Using that model, we also can have another fragment on the customer side,” Hareven said. “That means that whatever has been encrypted by Akeyless — passwords, signs, certificates — that we sign with a cryptographic key. Whenever we’re done with that, we can’t decrypt the customer’s secrets.”

At the end of the conversation, the group discussed what’s on the horizon for the company. What the company is most excited about, is its extensions, according to Hareven.

“Secrets management is very much an adjacent area to lots of other areas, such as privileged access management, certificate automation, key management and also password management,” he said. “You’re going to see more and more innovation coming up from Akeyless. Some of the things that I’ve mentioned are already available, such as our Secure Remote Access offering. We have at least a third of our customers adopt the Secure Remote Access, which is a lighter privileged management solution.”

Here’s the complete video interview, part of SiliconANGLE’s and theCUBE’s coverage of KubeCon + CloudNativeCon NA:

(* Disclosure: Akeyless Security Ltd. sponsored this segment of theCUBE. Neither Akeyless nor other sponsors have editorial control over content on theCUBE or SiliconANGLE.)

Photo: SiliconANGLE