OpenSSL: Secrets Life Cycle

The Generic Secret Life Cycle

[0] Entropy test
When a secret is generated, the RNG must 1st pass the entropy test, and have the test logged for the ‘key birth certificate’. Any error or failure must also be logged.
[1,2] Escrow and storage
Assuring key generation sanity, i.e. it passes the entropy test during generation, the secret may be escrowed. The secret is set to…




Scientist, humanitarian

Love podcasts or audiobooks? Learn on the go with our new app.

Recommended from Medium

Getting started with REST API for WVD ARM (Spring) release, and sharing my GitHub examples!

How A New CMS Can Improve Your Company Operations

Dockerize Flask app in dev and prod environments.

How we develop resilient software at

Git and It’s Magic

What?! @WSGToken’s new game is here! 🔥🕹️

When In Doubt, Clone It Out

Corda state reissuance: Break long transaction chain to improve performance and privacy

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store
Mi'kail Eli'yah

Mi'kail Eli'yah

Scientist, humanitarian

More from Medium

Explore our Westwing Tech Department

Why I Left Google to Start SGNL

Managing Software Development Teams — speed of delivery and quality improvements

Cheat Sheet for leaders