End-to-End Encrypted
Secrets Management
Experience the benefits of a managed solution, without trusting a third party with the keys to your kingdom. Safely store secrets knowing that SecretHub's servers can never read their contents.
Secure By Design
SecretHub’s unique design uses end-to-end encryption to ensure the server never knows what users store. Only you and the accounts you grant access can ever read your secrets.
- Every secret is encrypted before it ever leaves your device.
- Even the names of your secrets are encrypted.
- The server never sees any plaintext secret content or key material used for encryption.
- Only you and your team control encryption keys.
High Availability as a Service
A big part of security is availability, so SecretHub is hosted in 6 physically separated datacenters on 2 continents with automatic fail-over to ensure you can always deploy secrets to your infrastructure.
Open Source
All client-side code is open source and available on GitHub. This not only means that you can inspect our code, but that others have done so too.
Open Security Design
We believe in transparency, so we’ve documented our entire encryption design and published it for security researchers to review.
We Care About Bugs
Security is top priority, so we help security researchers responsibly report any issues they may find. This enables us to continuously improve security of the platform and fix issues as quickly as possible.