Centralized single points of control are a basic goal of corpsec. They trade ava... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		tptacek on March 24, 2022 \| parent \| context \| favorite \| on: If you’re not using SSH certificates you’re doing ... Centralized single points of control are a basic goal of corpsec. They trade availability for security. The alternative model of individual SSH keys is theoretically more highly available, but has many single points of security failure.

jas- on April 3, 2022 [–]

Please enlighten me on the ‘many single points of security failure.’

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact