2 years ago I had a dream ! Back then my company was asking me for detailed information about Google Cloud service account key usage and I was having …nothing to work with at that time.
While this has now changed, remember most importantly that you should :
Ok, you know service accounts have to be used only where appropriate, and this is more true for service account keys, check the official Google Blog :
The problem with a key is its lifecycle — we know that it’s recommended to rotate them, to use them only when mandatory, and…
When you work for the first cosmetics group in the world, you work with the data, you work for the data, you work because of the data and you almost live for the data! The Company now wants to leverage Cloud technology for their data, for their business, for their customers
But does that mean cost a lot of money?
Consuming a lot of resources?
Need a lot of people for that?
Let’s do some tests to answer that!
The right tool for the right use case.
This is where Google Cloud Platform is coming. Because Google is the biggest…
One of the things that we like the most with Cloud Providers is when you just give some lines of code and the rest of the story is not made by you.
Cloud Build, the serverless CI/CD product of Google Cloud is amazing, because it’s simple, smart and efficient.
Here I have a Cloud Repository where my code is…
When your organization is growing quickly their use of public cloud, security should not be left as an afterthought.
One of the most important aspect is the ServiceAccount (we call it SA) and the keys that are attached to it.
The SA is not the problem here, as Google recommends replacing default SA’s with specific ones and separate them for each services used in GCP.
The biggest problem is the external KEY, we can call it exfiltration of data, we can have multiple people sharing the same key, let’s face it : it’s out of control !!!
Most of the…