The HashiConf Digital Roundtable took place this week. The opportunity for HashiCorp publisher to announce new security and identity-based access offerings with a lot of open source.
HCP Vault, Consul and Frontier of HashiCorp: the announcements
HashiConf Digital is a (virtual) gathering of the HashiCorp community that takes place twice a year on the publisher’s products and solutions. This year’s edition was particularly rich in zero-trust strategies in the multi-cloud.
Here are the main announcements.
Vault on his cloud
HashiCorp first announced the release of the private beta version of HashiCorp Vault on its HashiCorp Cloud Platform (HCP).
Vault strictly secures, stores and controls access to tokens, passwords, certificates and encryption keys. The solution protects secrets and other confidential data. The novelty? Previously it was only available as open source or commercial self-managed software. Now Secret Management is a managed service run by HashiCorp.
Person-to-machine access with Boundary
The company also announced the arrival of HashiCorp Boundary. This is a new open source project for secure identity-based access management. Users can remotely access systems based on user identity regardless of location.
Boundary is free, open source software that takes a new approach to remote access. With this solution, secure identity-based access management ensures that “users only have access to the applications and systems they need, instead of exposing the private network”. With Boundary, solutions such as Okta, Active Directory and other identity platforms can be used to grant limited access to critical systems and applications based on their trusted identities.
Machine-to-machine access with Consul
At the same time, we learn that HashiCorp Consul (networking and networking of services) is now available in public beta on the publisher’s platform.
Consul enables a secure machine-to-machine connection by requiring authentication between applications and ensuring that “only the right machines are communicating with each other”.
Multi-cloud security: 4 pillars for the publisher
Thanks to these announcements, the HashiCorp model envisages a zero trust approach to the four pillars of multi-cloud security:
Machine authentication and authorization (via Vault)
Machine access (via consul)
Authentication and authorization of people (via trusted identity providers)
Person-to-machine access (via boundary).
Availability of new products
HCP Vault is now available as a private beta (upon request) through AWS.
HCP Consul is also available in public beta on AWS.
HashiCorp Boundary 0.1 is now available free of charge as an open source project at borderproject.io.