StackOverflow2013

Note that there are some explanatory texts on larger screens.

plurals

POHide private keys etc from administrators
primarykey
Id
12200619
data
AcceptedAnswerId
12201268
AnswerCount
3
ClosedDate
CommentCount
0
CommunityOwnedDate
CreationDate
2012-08-30T15:41:23.433
FavoriteCount
0
LastActivityDate
2012-09-11T13:03:27.437
LastEditDate
2012-09-11T13:03:27.437
LastEditorUserId
1185432
OwnerUserId
1185432
ParentId
0
PostTypeId
1
Score
2
ViewCount
416
LastEditorDisplayName
text
Body
Currently I take part in developing a system based on Java EE (WebLogic server, to be more precise) and I am wondering how to protect some private data from administrators. For example, some parts of a system stores credentials for legacy systems in a deployment descriptors as plain text and this is bad because a deployer can read application configuration file (<code>ejb-jar.xml</code>, for example) and steal username and password for powerfull account. I want to close this security hole, but don't know how. Now I am interested in protecting this kind of data: <ol> <li>Login</li> <li>Password</li> <li>Private key for symmetric encryption</li> </ol> From <a href="http://kingsfleet.blogspot.com/2008/12/storing-password-somewhere-safe.html" rel="nofollow">here</a> I've discovered that I can use a JCEKS keystore to protect this type of information, but I can not understand how to use it. My application still should contain the kestore password and the key password to access it. So, a depoyer can steal passwords for keystores and keys, find my secure storage and steal credetials. Obviously, I can revoke <code>read</code> privileges from the deployer account, but then he can decompile my appliaction and develop his own similar app (or edit my one), that simply prints secure data to some file or send it by email... And now I am stuck... Can anybody give me some links that can explain how to protect a system from administrators? Weblogic related links will be preferable. I totally understand that it is not possible to protect from all administrators and there should be some <code>security administrator</code> that will be responsible for keystore management and so forth, but I want to secure all sensitive data from everybody else. RESULTS Both jtahlborn's and slim's answers are correct, but slims's answer in more interesting. I think that in my case it will be appropriate to accept only signed applications for installation on the server. This decidion can solve problem with applicatoin modifications done by a administrator. Administrators will have password from keystore and all keys, but they will not have access to keystore file at all. Access to keystore file will have only special security administrators ('rw') and server ('r'). So, everybody will have the key, but nobody (except security administrators) will have access to the box.
Tags
<java><security><java-ee><weblogic><administration>
Title
Hide private keys etc from administrators
singulars
PostAcceptedAnswerId
1. PO
 singulars
 PostTypePostTypeId
 PTAnswer
PostParentId
1. This table or related slice is empty.
PostTypePostTypeId
1. PTQuestion
UserLastEditorUserId
1. USgkuzmin
UserOwnerUserId
1. USgkuzmin
plurals
PostLinksPostIdRelatedPostId
1. This table or related slice is empty.
PostLinksRelatedPostIdPostId
1. This table or related slice is empty.
PostsAcceptedAnswerId
1. This table or related slice is empty.
PostsParentIdCreationDate
1. PO
 singulars
 PostTypePostTypeId
 PTAnswer
2. PO
 singulars
 PostTypePostTypeId
 PTAnswer
3. PO
 singulars
 PostTypePostTypeId
 PTAnswer
VotesPostIdCreationDate
1. VO
 singulars
 PostPostId
 POHide private keys etc from administrators
 UserUserId
 This table or related slice is empty.
 VoteTypeVoteTypeId
 VTUpMod
2. VO
 singulars
 PostPostId
 POHide private keys etc from administrators
 UserUserId
 This table or related slice is empty.
 VoteTypeVoteTypeId
 VTUpMod
CommentsPostId
1. This table or related slice is empty.

Querying!

Guidance

A row detail

Detail views are divided into sections. All the information in the data section comes from columns in the selected row. The other sections display data from other, related rows.

Related data can be related in a to-one or a to-many fashion. Captions of data related in a to-many fashion link to a list view showing a filtered view of the table.

Try moving around until you find a non-empty to-many entry and click on the label to get to one. You can move back to the root by clicking on the database name in the header.