06:34, 03 March 2026

Russian Developers Automate Secrets and Password Management in Container Environments

An integration between Bozman and CUP 2.0 moves key and password management into fully automated mode.

Bozman Platform from Gruppa Astra (Astra Group) and AT Consulting announced integration of their products to automate password and key management in containerized environments.

The integration connects the Bozman containerization platform with the product Tsentr Upravleniya Polzovatelyami (User Management Center, CUP) 2.0. Applications now receive passwords, API keys, and tokens directly from CUP at the moment a request is made. Developers no longer need to store them in configuration files or repositories.

The system supports scheduled automatic rotation of secrets and issues one-time credentials for database connections. This significantly reduces the risk of data leaks and eliminates the widespread problem of static secrets in infrastructure. DevOps teams no longer have to manually change passwords and perform related maintenance tasks.

“In today’s cloud environment, security cannot remain static. Our integration offers the market not just container orchestration, but a ready-made platform where secret management happens automatically, on a need-to-know basis. It replaces the outdated approach of keeping passwords in configuration files and rotating them manually every six months. We are making Bozman secure by default, turning security from a burden into a competitive advantage for business,” said Igor Sorokin, commercial director of the GitFlic and Bozman platforms.

Real-Time Access Control and Audit

Access to secrets is governed by the principle of least privilege. Each application receives only the data it actually needs. All actions are recorded in an immutable audit log, simplifying compliance with PCI DSS and Russian FSTEC requirements. In the event of an incident, administrators can centrally revoke access.

“For many years, our company has specialized in comprehensive data protection and raising clients’ information security standards. We have accumulated extensive experience solving complex cybersecurity challenges, developing reliable identification and authentication mechanisms, and implementing effective access and secret management. We believe automated secret management in containerized environments is essential for the security and stability of modern applications. We fully recognize our responsibility to clients, and the protection of their data remains our top priority,” said Denis Kovalev, director of information security at AT Consulting.

The integration reduces operational and reputational risks associated with potential data leaks.

Cybersecurity