Secureable provides secure, tightly controlled access and management to secrets, while providing tight access control and recording a detailed audit log.

What is Secureable?

Secureable is a system tool for…

Securely managing and accessing secrets



Authentication



Encryption / Decryption as a service

Securely managing and accessing secrets

A secret is any sensitive information such as API keys, passwords, or certificates.

Secureable provides secure, tightly controlled access and management to secrets while providing tight access control and recording a detailed audit log.

Most modern systems require access to a multitude of secrets, such as database credentials, API keys for external services, and credentials for service-oriented architecture communication. Understanding who is accessing what secrets is already very difficult and platform-specific. Adding on key rolling, secure storage, and detailed audit logs is almost impossible without a custom solution. This is where Secureable steps in.
Key features:

Authentication

Secureable can authenticate a user in a number of ways, such as username/password, Active Directory, TLS certificates and Radius. A user can be associated with more than one authentication account.

Secure Secret Storage

Arbitrary key/value secrets can be stored in Secureable, which are encrypted prior to writing them to persistent storage, so gaining access to the raw storage isn’t enough to access your secrets.

Dynamic Secrets

Secureable can generate secrets on-demand for some systems, such as AWS or SQL databases. For example, when an application needs to access an S3 bucket, it asks Secureable for credentials, and Secureable will generate an AWS keypair with valid permissions on demand. After creating these dynamic secrets, Secureable will also automatically revoke them after the lease is up.

Encryption

Secureable can encrypt and decrypt data without storing it. This allows security teams to define encryption parameters and developers to store encrypted data in a location such as SQL without having to design their own encryption methods.

Leasing and Renewal

All secrets in Secureable have a lease associated with them. At the end of the lease, Secureable will automatically revoke that secret. Clients are able to renew leases via built-in renew APIs.

Revocation

Secureable has built-in support for secret revocation. Secureable can revoke not only single secrets, but a tree of secrets, for example all secrets read by a specific user, or all secrets of a particular type. Revocation assists in key rolling as well as locking down systems in the case of an intrusion.

SDK

For OpenEdge systems, using Secureable is as simple as calling the sdk methods. The authentication methods return a Client Principal with user metadata to use as the developer wishes.

Maria joined the Pitchfork team having previously held Senior sales management roles with Flow Systems, Panvivia, Rimini Street, IBM and Progress Software among others.

She leads the Pitchfork sales team, working closely with co-founders Nigel Allen and Kim Davies.

Maria is a great asset to Pitchfork and it is fantastic to have her on board. She brings with her an impressive amount of Business, Strategy and Sales expertise that will both support our customers and positively impact our growth strategies - very exciting times.

“I'm very excited to join Nigel, Kim and the Team at Pitchfork and to be re-connecting with the Progress Software community. The Pitchfork Team is recognised as being among the best OpenEdge practitioners in the world. Pitchfork present a real opportunity to bring this world-class expertise to the Progress community within the Asia Pacific region. This brings with it real value on multiple levels for Progress Application Partners and End-User Organisations."

Over thirty years experience in all facets of the IT industry. Experience covers most roles from pre-sales to consulting. Business Analysis to Systems Analysis. From hardware selection and acquisition to network design and security. Accomplished communicator, able to converse at all levels, from Workshop to Boardroom. Experienced in a wide range of businesses and industries.

Involved in all sizes and scales of projects from one and two man shops through to large multi-nationals, working at all levels from a lone code cutter through to lead in large development projects.

Specialities: Experience with Progress Software since Version 3 (when Progress Software was still called Data Language Corp). Originally as a customer/developer, then as an employee and later as an independent consultant. Extensive experience in Roundtable TSMS and Roundtable consulting. Since 1994 also working in LAMP (Linux, Apache, MySQL and Perl/Python) technology and EDMS solutions.

A senior executive with a clear understanding of all aspects of the business environment, having had a strong progression from technical software development and business process analysis through to senior executive roles in a career spanning well over 25 years in IT.

Due to extensive hands-on experience in a wide range of disciplines, able to navigate and motivate staff towards a common goal. Having had involvement in both business start-up as well as management of growing and mature operations, Kim thrives on influencing and driving business opportunities - either directly or through complex channels.

Additionally, broad experience in consulting to a number of client organizations at senior management and board levels both in IT-specific areas as well as operational contexts, has exposed Kim to a myriad of industry sectors across manufacturing, services, retail, wholesale trade and distribution. Kim has extensive DBA and software development experience with many major products.