Ask HN: What's the best way to store company private keys?

5 pointsby jonathan-kosgeialmost 7 years ago

I'm looking at Terraform's vault, but what I'd love to know what's the standard way to keep company keys secure?

1 comment

moviuroalmost 7 years ago

Depending on criticity, use (frequency and effective use), consider:<p>* HSM <a href="https://en.wikipedia.org/wiki/Hardware_security_module" rel="nofollow">https://en.wikipedia.org/wiki/Hardware_security_module</a><p>* Handwritten base64 sheets of paper in different vaults<p>* a USB token (Yubikey, or whatnot)