Developers: | Orion soft (Orion) |
Last Release Date: | 2024/08/29 |
Branches: | Information security |
Technology: | Information Security - Encryption, DSS |
Content |
The main articles are:
2024
Add StarVault Module
Orion soft has added a StarVault Shuttle module to the StarVault access management and protection system. It allows you to quickly and safely migrate logins, passwords, API keys, access tokens, certificates from the source storage to the Russian registry solution. The developer announced this on August 29, 2024.
In 2023, vendor HashiCorp Vault changed its licensing policy. Its current versions have become unavailable for use in production systems in our country. Companies that are important to comply with the license purity have the task of migrating to their Russian counterpart. Without ready-made tools for transferring secrets, this process can take days or even weeks. StarVault Shuttle is a convenient tool for simple migration in a couple of clicks. On average, it takes a few seconds to transfer 100 secrets using a new module, "said Maxim Morar, leader of the StarVault product at Orion soft. |
StarVault Shuttle supports various types of secrets: Key-Value,, SSH Transit,,, LDAP Kubernetes PKI Certificates, Databases. Migration data is available through the command line interface or web interface. - DevOps The commands will be able to migrate secrets to any configuration from the source storage to StarVault. Transfer reliability information is provided by error handling and logging mechanisms.
The module implements the capabilities of online and offline migration. Companies can choose the option depending on where the source and target stores are deployed - in the same loop or in different ones.
Online migration is relevant to customers who have both stores in the same loop. It runs automatically: just run Shuttle, configure access to the source storage, enter the target settings, and start the migration process in StarVault.
Offline migration is suitable for an infrastructure in which the source and target storage are isolated from each other in different loops. It allows you to save a file with data in encrypted form to physical media and transfer it to the path with the target storage.
StarVault Shuttle does not have a backend-level storage binding, the interaction between the source and target systems occurs through the API. This allows you to reduce the time to transfer secrets, regardless of the version of the source Vault, the type of Secret Engines in the company and which backend should be in the target storage.
Inclusion in the register of domestic software
The Ministry of Digital Development of the Russian Federation has included a solution for the safe management of StarVault secrets in the register of domestic software (entry No. 22639 of 24.05.24). Orion soft (Orion) announced this on May 27, 2024.
The solution, developed at Orion soft, hit the market in May 2024. Inclusion in the register confirms that the product meets all the requirements that the Ministry of Digital Development presents for domestic development, can be used in import substitution projects, including state organizations and companies with state participation.
StarVault allows you to securely store sensitive information with secure access: secrets for Kubernetes microservices, CI/CD builds, certificates, API access keys and other secrets, including encrypted ones. The solution also provides the ability to manage users and policies, convenient creation, management and rotation of certificates, OIDC provider functions for integration with external systems and cloud services through end-to-end authentication.
StarVault was originally a component of our Nova containerization platform, but having seen the need for a comprehensive product on the market that would cover all the capabilities of HashiCorp Vault, we made it available as a standalone solution. It can be integrated with Kubernetes, Docker, CI/CD systems, configuration management systems, while not doubting reliability - we ourselves control the entire code base, regularly update, fix vulnerabilities, provide technical support with SLA 9/5 and 24/7. We plan to further develop our product in accordance with the local requirements applicable in Russia, relying on an in-depth analysis of customer tasks, "said Maxim Morar, leader of the StarVault product at Orion soft. |