Are there other options for storing keys other than Azure Key Vault?
Hello,
Azure Key Vault is the best option for storing RSA keys, but even I cannot access the private RSA key with the SDK. I need to sign JWTs, which are done regularly, by using the
sign API exposed by the vault. This would be costly, as JWTs are signed regularly.
Current scenario:
1. Generate 2 RSA keys: A and B
2. B is stored in Azure Vault and is only used to encrypt key A
3. The encrypted A key should be stored in a safer place than the database (because the private part of the key is needed too)
Are there slightly better than the database for storing this RSA key?5 Replies
Would using a certificate work? For that one you could get the private key
Probably, I will check it out, thanks!
Unknown User•8mo ago
Message Not Public
Sign In & Join Server To View
Hi, this is very to the one I asked yesterday. I checked the blog post. That is what I do not want to use, it uses the
sign API, which I want to avoidUnknown User•8mo ago
Message Not Public
Sign In & Join Server To View